• Support
  • Forums
  • Blogs

Vulnerability issues

Jacky_AngJacky_Ang

New Life Form
Lately my client running a VA scan with Nessus Pro scan on Alienvault server for their compliance purposes. The list below shown that finding with partial example only and there are more than 190 findings, does anyone having these issues before? We knew that Alienvault is a hardening OS but where can we find the justifiable document to prove this issues?


Example:-










































































































































































































1.      
 
"1.1.1.1 Ensure mounting
of cramfs filesystems is disabled"
 
Description
Removing
support for unneeded filesystem types reduces the local attack surface of the
system. If this filesystem type is not needed, disable it.
 
Remote
Value
The
command '/bin/grep -E '^[\s]*install cramfs /bin/true' /etc/modprobe.d/*
/usr/bin/awk
'{print} END {if (NR != 0) print "pass" ; else print "fail"}'' returned :
 
fail
 
Solution
Edit
or create the file /etc/modprobe.d/CIS.conf and add the following line:
install cramfs /bin/true
2.      
 
"1.1.1.2 Ensure mounting
of freevxfs filesystems is disabled"
 
Description
Removing
support for unneeded filesystem types reduces the local attack surface of the
system. If this filesystem type is not needed, disable it.
 
Remote
Value
The
command '/bin/grep -E '^[\s]*install freevxfs /bin/true' /etc/modprobe.d/*
/usr/bin/awk
'{print} END {if (NR != 0) print "pass" ; else print "fail"}'' returned :
 
fail
 
Solution
Edit
or create the file /etc/modprobe.d/CIS.conf and add the following line:
install freevxfs /bin/true
3.      
 
"1.1.1.3 Ensure mounting
of jffs2 filesystems is disabled"
 
Description
Removing
support for unneeded filesystem types reduces the local attack surface of the
system. If this filesystem type is not needed, disable it.
 
Remote
Value
The
command '/bin/grep -E '^[\s]*install jffs2 /bin/true' /etc/modprobe.d/*
/usr/bin/awk
'{print} END {if (NR != 0) print "pass" ; else print "fail"}'' returned :
 
fail
 
Solution
Edit
or create the file /etc/modprobe.d/CIS.conf and add the following line:
install jffs2 /bin/true
4.      
 
"1.1.1.4 Ensure mounting
of hfs filesystems is disabled"
 
Description
Removing
support for unneeded filesystem types reduces the local attack surface of the
system. If this filesystem type is not needed, disable it.
 
Remote
Value
The
command '/bin/grep -E '^[\s]*install hfs /bin/true' /etc/modprobe.d/*
/usr/bin/awk
'{print} END {if (NR != 0) print "pass" ; else print "fail"}'' returned :
 
fail
 
Solution
Edit
or create the file /etc/modprobe.d/CIS.conf and add the following line:
install hfs /bin/true
5.      
 
"1.1.1.5 Ensure mounting
of hfsplus filesystems is disabled"
 
Description
Removing
support for unneeded filesystem types reduces the local attack surface of the
system. If this filesystem type is not needed, disable it.
 
Remote
Value
The
command '/bin/grep -E '^[\s]*install hfsplus /bin/true' /etc/modprobe.d/*
/usr/bin/awk
'{print} END {if (NR != 0) print "pass" ; else print "fail"}'' returned :
 
fail
 
Solution
Edit
or create the file /etc/modprobe.d/CIS.conf and add the following line:
install hfsplus /bin/true
 

Share post:

Sign In or Register to comment.