STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system must implement non-executable program stacks.

DISA Rule

SV-227791r603266_rule

Vulnerability Number

V-227791

Group Title

SRG-OS-000480

Rule Version

GEN003540

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

This action applies to the global zone only. Determine the type of zone that you are currently securing.

# zonename

If the command output is "global", this action applies.

Edit /etc/system and set the noexec_user_stack parameter to 1. Restart the system for the setting to take effect.

Check Contents

This check applies to the global zone only. Determine the type of zone that you are currently securing.

# zonename

If the command output is "global", this check applies.

Determine if the system implements non-executable program stacks.
# grep noexec_user_stack /etc/system

If the noexec_user_stack is not set to 1, this is a finding.

Vulnerability Number

V-227791

Documentable

False

Rule Version

GEN003540

Severity Override Guidance

This check applies to the global zone only. Determine the type of zone that you are currently securing.

# zonename

If the command output is "global", this check applies.

Determine if the system implements non-executable program stacks.
# grep noexec_user_stack /etc/system

If the noexec_user_stack is not set to 1, this is a finding.

Check Content Reference

M

Target Key

4061

Comments