STIGQter STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

Proxy ARP must not be enabled on the system.

DISA Rule

SV-226896r603265_rule

Vulnerability Number

V-226896

Group Title

SRG-OS-000480

Rule Version

GEN003608

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Remove non-local published ARP entries from the system.

Procedure:
# arp -d <host>

Check system initialization files for any commands creating published ARP entries (such as "arp -s <host> <ether> pub" or "arp -f") and removing them.

Check Contents

Determine if the system has non-local published ARP entries.

Procedure:
# arp -a

If any entries have the flag P and no flag L, they are non-local published entries, and this is a finding.

Vulnerability Number

V-226896

Documentable

False

Rule Version

GEN003608

Severity Override Guidance

Determine if the system has non-local published ARP entries.

Procedure:
# arp -a

If any entries have the flag P and no flag L, they are non-local published entries, and this is a finding.

Check Content Reference

M

Target Key

4060

Comments