Check: GEN007820
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN007820
(in versions v1 r14 through v1 r10)
Title
The system must not have IP tunnels configured. (Cat II impact)
Discussion
IP tunneling mechanisms can be used to bypass network filtering.
Check Content
Determine if any IP tunnels are configured on the system. Check for IP tunnels. # lstun -a # ifconfig -a | grep -e gre -e gif -e cti -e sit If any tunnels are listed, this is a finding.
Fix Text
Remove the configuration for any IP tunnels from the system. Remove tunnels listed with the lstun command. #rmtun -t <Tunnel id> -d Remove the tunneled IP interfaces. #ifconfig <if name> detach #rmdev -Rdl <if name>
Additional Identifiers
Rule ID: SV-38929r1_rule
Vulnerability ID: V-22547
Group Title: GEN007820
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-001551 |
The organization defines approved authorizations for controlling the flow of information between interconnected systems. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AC-4 |
Information Flow Enforcement |