STIGQter: STIG Summary: General Purpose Operating System SRG Version: 1 Release: 6 Benchmark Date: 26 Jul 2019:

The operating system must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.

DISA Rule

SV-71101r2_rule

Vulnerability Number

V-56841

Group Title

SRG-OS-000370-GPOS-00155

Rule Version

SRG-OS-000370-GPOS-00155

Severity

CAT II

CCI(s)

CCI-001774 - The organization employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system.

Weight

Fix Recommendation

Configure the operating system to employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.

Check Contents

Verify the operating system employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs. If it does not, this is a finding.

Vulnerability Number

V-56841

Documentable

False

Rule Version

SRG-OS-000370-GPOS-00155

Severity Override Guidance

Verify the operating system employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs. If it does not, this is a finding.

Check Content Reference

Target Key

2739

The operating system must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments