” he Center for Internet Security (CIS) is a non-profit
association for the promotion of computer security. Its members,
largely North American, range from IBM and Motorola to universities
and individuals. Through the consensus of members, it develops a
list of best practices for Windows, Linux, Solaris and Free BSD, as
well as Cisco routers, Oracle databases, and Apache Web servers.
These best practices are incorporated into benchmark scripts and
accompanying PDF guides for interpreting the results and improving
security with a series of actions and scripts. The CIS Linux
Benchmark provides a comprehensive checklist for system
hardening.“Because the CIS has limited resources, its current Linux
Benchmark is designed for only Red Hat Enterprise Linux 2.1 and 3.0
and Fedora Core 1, 2, and 3…”