STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system must not be used as a syslog server (log host) for systems external to the enclave.

DISA Rule

SV-220053r603265_rule

Vulnerability Number

V-220053

Group Title

SRG-OS-000480

Rule Version

GEN005440

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the hosts outside of the local enclave to not log to this system.

Check Contents

Ask the SA if the log host server is collecting data for hosts outside the local enclave. If it is, this is a finding.

Vulnerability Number

V-220053

Documentable

False

Rule Version

GEN005440

Severity Override Guidance

Ask the SA if the log host server is collecting data for hosts outside the local enclave. If it is, this is a finding.

Check Content Reference

M

Target Key

4060

Comments