| SLES-15-030050 |
V1R9 |
SUSE operating system audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events. |
|
| SLES-15-030060 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the ssh-keysign command. |
|
| SLES-15-030070 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the passwd command. |
|
| SLES-15-030080 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the gpasswd command. |
|
| SLES-15-030090 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the newgrp command. |
|
| SLES-15-030100 |
V1R9 |
The SUSE operating system must generate audit records for a uses of the chsh command. |
|
| SLES-15-030110 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the unix_chkpwd or unix2_chkpwd commands. |
|
| SLES-15-030120 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chage command. |
|
| SLES-15-030130 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the crontab command. |
|
| SLES-15-030140 |
V1R9 |
The SUSE operating system must audit all uses of the sudoers file and all files in the /etc/sudoers.d/ directory. |
|
| SLES-15-030150 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the creat, open, openat, open_by_handle_at, truncate, and ftruncate system calls. |
|
| SLES-15-030190 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the setxattr, fsetxattr, lsetxattr, removexattr, fremovexattr, and lremovexattr system calls. |
|
| SLES-15-030250 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chown, fchown, fchownat, and lchown system calls. |
|
| SLES-15-030290 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chmod, fchmod, and fchmodat system calls. |
|
| SLES-15-030330 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the sudoedit command. |
|
| SLES-15-030340 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chfn command. |
|
| SLES-15-030350 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the mount system call. |
|
| SLES-15-030360 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the umount system call. |
|
| SLES-15-030370 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the ssh-agent command. |
|
| SLES-15-030380 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the insmod command. |
|
| SLES-15-030390 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the rmmod command. |
|
| SLES-15-030400 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the modprobe command. |
|
| SLES-15-030410 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the kmod command. |
|
| SLES-15-030420 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chmod command. |
|
| SLES-15-030430 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the setfacl command. |
|
| SLES-15-030440 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chacl command. |
|
| SLES-15-030450 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the chcon command. |
|
| SLES-15-030460 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the rm command. |
|
| SLES-15-030470 |
V1R9 |
The SUSE operating system must generate audit records for all modifications to the tallylog file must generate an audit record. |
|
| SLES-15-030480 |
V1R9 |
The SUSE operating system must generate audit records for all modifications to the lastlog file. |
|
| SLES-15-030490 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the passmass command. |
|
| SLES-15-030500 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the usermod command. |
|
| SLES-15-030510 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the pam_timestamp_check command. |
|
| SLES-15-030520 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the delete_module system call. |
|
| SLES-15-030530 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the init_module and finit_module system calls. |
|
| SLES-15-030550 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the su command. |
|
| SLES-15-030560 |
V1R9 |
The SUSE operating system must generate audit records for all uses of the sudo command. |
|