STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

Network analysis tools must not be installed.

DISA Rule

SV-220041r603265_rule

Vulnerability Number

V-220041

Group Title

SRG-OS-000095

Rule Version

GEN003865

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Remove the network analysis tool binary from the system. The snoop binary is part of the SUNWrcmdc package, which may also be removed if none of its components are required.

Procedure:
# rm <binary>
# pkgrm SUNWrcmdc

Check Contents

Determine if any network analysis tools are installed.

Procedure:
# find / -name ethereal
# find / -name wireshark
# find / -name tshark
# find / -name netcat
# find / -name tcpdump
# find / -name snoop

If any network analysis tools are found, this is a finding.

Vulnerability Number

V-220041

Documentable

False

Rule Version

GEN003865

Severity Override Guidance

Determine if any network analysis tools are installed.

Procedure:
# find / -name ethereal
# find / -name wireshark
# find / -name tshark
# find / -name netcat
# find / -name tcpdump
# find / -name snoop

If any network analysis tools are found, this is a finding.

Check Content Reference

M

Target Key

4060

Comments