Check: GEN004600
HP-UX 11.23 STIG:
GEN004600
(in version v1 r8)
Title
The SMTP service must be an up-to-date version. (Cat I impact)
Discussion
The SMTP service version on the system must be current to avoid exposing vulnerabilities present in unpatched versions.
Check Content
Determine the version of the SMTP service software. To obtain version information for the Sendmail daemon: # what /usr/sbin/sendmail OR # strings /usr/sbin/sendmail | grep -i version If the Sendmail version is not at least 8.14.4, or if it is not the vendor's latest version, this is a finding.
Fix Text
Obtain and install a newer version of Sendmail from the operating system vendor or from http://www.sendmail.org or ftp://ftp.cs.berkeley.edu/ucb/sendmail.
Additional Identifiers
Rule ID: SV-35065r2_rule
Vulnerability ID: V-4689
Group Title: GEN004600
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001230 |
The organization incorporates flaw remediation into the organizational configuration management process. |
Controls
Number | Title |
---|---|
SI-2 |
Flaw Remediation |