STIGQter STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The Sendmail service must not have the wizard backdoor active.

DISA Rule

SV-227850r603266_rule

Vulnerability Number

V-227850

Group Title

SRG-OS-000480

Rule Version

GEN004700

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

If the WIZ command is enabled on Sendmail, it should be disabled by adding this line to the sendmail.cf configuration file (it must be typed in uppercase).

OW*

For the change to take effect, kill the Sendmail process, refreeze the sendmail.cf file, and restart the Sendmail process.

Check Contents

Locate the sendmail.cf configuration file and check for wiz configuration.

Procedure:
# find / -name sendmail.cf -print
# grep -v "^#" <sendmail.cf location> |grep -i wiz

If an entry is found for wiz, this is a finding.

Vulnerability Number

V-227850

Documentable

False

Rule Version

GEN004700

Severity Override Guidance

Locate the sendmail.cf configuration file and check for wiz configuration.

Procedure:
# find / -name sendmail.cf -print
# grep -v "^#" <sendmail.cf location> |grep -i wiz

If an entry is found for wiz, this is a finding.

Check Content Reference

M

Target Key

4061

Comments