STIGQter: STIG Summary: IBM DB2 V10.5 LUW Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 25 Oct 2019:

DB2 must provide a warning to appropriate support staff when allocated audit record storage volume reaches 75% of maximum audit record storage capacity.

DISA Rule

SV-89245r1_rule

Vulnerability Number

V-74571

Group Title

SRG-APP-000359-DB-000319

Rule Version

DB2X-00-007600

Severity

CAT II

CCI(s)

• CCI-001855 - The information system provides a warning to organization-defined personnel, roles, and/or locations within an organization-defined time period when allocated audit record storage volume reaches an organization-defined percentage of repository maximum audit record storage capacity.

Weight

10

Fix Recommendation

Use the Operating system tools or external utilities to monitor the Audit Data Path and set alerts for 75% space utilization.

Check Contents

Use the following command to find the directory for the Audit Data Path:

$db2audit describe

If there is no monitoring of the Audit Data Path location at the Operating System level using OS utilities or system management utilities to send an alert at 75% space utilization, this is a finding.

Vulnerability Number

V-74571

Documentable

False

Rule Version

DB2X-00-007600

Severity Override Guidance

Use the following command to find the directory for the Audit Data Path:

$db2audit describe

If there is no monitoring of the Audit Data Path location at the Operating System level using OS utilities or system management utilities to send an alert at 75% space utilization, this is a finding.

Check Content Reference

M

Target Key

3161

Comments