CIS Ubuntu Linux 14.04 LTS Benchmark v2.0.0.1 - Level 1
Center for Internet Security | 2.0.0Linux/Unix, Ubuntu 8 x 64 - 64-bit Amazon Machine Image (AMI)
Default configuration fails to log SSH sessions
By default, the /var/log/auth.log file is set to be owned by root. This prevents syslog from writing SSH session information to the file and important security information is lost. A plain vanilla Ubuntu 14.04 image sets the /var/log/auth.log file to be owned by the syslog user and that correctly logs SSH sessions out of the box. On this CIS AMI, once you change the owner of /var/log/auth.log back to the syslog user, then it starts logging as expected.
This is a very basic and critical bug for CIS to miss in their testing.
- Leave a Comment |
- Mark review as helpful
The image type is limited
The options of t1 and t2 image types are not available during the instance creation even though they are listed in the product preview page. The smallest image type is m2.