STIGQter: STIG Summary: Application Layer Gateway (ALG) Security Requirements Guide (SRG) Version: 1 Release: 2 Benchmark Date: 24 Jul 2015:

The ALG must shut down by default upon audit failure (unless availability is an overriding concern).

DISA Rule

SV-68687r1_rule

Vulnerability Number

V-54441

Group Title

SRG-NET-000089-ALG-000055

Rule Version

SRG-NET-000089-ALG-000055

Severity

CAT II

CCI(s)

• CCI-000140 - The information system takes organization-defined actions upon audit failure (e.g., shut down information system, overwrite oldest audit records, stop generating audit records).

Weight

10

Fix Recommendation

Configure the ALG to shut down by default upon audit failure (unless availability is an overriding concern).

Check Contents

Verify the ALG shuts down by default upon audit failure (unless availability is an overriding concern).

If the ALG does not shut down by default upon audit failure (unless availability is an overriding concern), this is a finding.

Vulnerability Number

V-54441

Documentable

False

Rule Version

SRG-NET-000089-ALG-000055

Severity Override Guidance

Verify the ALG shuts down by default upon audit failure (unless availability is an overriding concern).

If the ALG does not shut down by default upon audit failure (unless availability is an overriding concern), this is a finding.

Check Content Reference

M

Target Key

2489

Comments