Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/3tternp/cis-centos
https://github.com/3tternp/cis-centos
Last synced: 1 day ago
JSON representation
- Host: GitHub
- URL: https://github.com/3tternp/cis-centos
- Owner: 3tternp
- License: mit
- Created: 2021-08-13T15:24:20.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2022-06-23T08:54:58.000Z (over 2 years ago)
- Last Synced: 2023-03-06T19:02:16.710Z (over 1 year ago)
- Language: Shell
- Size: 103 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# centos-cis-benchmark
Based on CIS CentOS Linux 7 Benchmark
## How to run the audit
To run the audit, execute these steps
```bash
git clone https://github.com/3tternp/cis-centos
cd cis-centos
sudo bash centos-cis-check.sh
```
The following tests must be executed manually. These are dependent on your own site configuration, and needs a manual check. By default, the audit scripts will fail these checks.
* 1.2.1 - Ensure package manager repositories are configured (Not Scored)
* 3.4.2 - Ensure /etc/hosts.allow is configured (Scored)
* 3.4.3 - Ensure /etc/hosts.deny is configured (Scored)
* 3.6.4 - Ensure outbound and established connections are configured (Not Scored)
* 5.5 - Ensure root login is restricted to system console (Not Scored)
## Remediation
Some remediation scripts are also included, however use them at your own risk. While most of the scripts would correct the problem, they could cause outages on your system, so be sure to have a proper roll back plan before you execute the scripts.
## Acknowledgement
* https://github.com/haxorof/centos-bench-security