The following section details the STIG rules for Red Hat Enterprise Linux (RHEL) 6 that have been successfully addressed in BMC Discovery 11.0 but have restrictions.
The table provides links to STIG rule descriptions and details on the STIGviewer website. STIGviewer provides an online, searchable index of Public Domain STIG content, though is not related to DISA. Its content may not be up to date.
The system must use a separate file system for /var/log.
The system must use a separate file system for the system audit data path.
The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication.
Permissions of files should match the permissions expected in the RPM database.