Check: GEN006240
HP-UX 11.31 STIG:
GEN006240
(in versions v1 r19 through v1 r13)
Title
The system must not run an Internet Network News (INN) server. (Cat II impact)
Discussion
INN servers access Usenet newsfeeds and store newsgroup articles. INN servers use the Network News Transfer Protocol (NNTP) to transfer information from the Usenet to the server and from the server to authorized remote hosts. If this function is necessary to support a valid mission requirement, its use must be authorized and approved in the system accreditation package.
Check Content
Check the domain name for NIS maps. Procedure: # domainname If the name returned is simple to guess, such as the organization name, building, or room name, etc., this is a finding.
Fix Text
Disable the INN server.
Additional Identifiers
Rule ID: SV-38236r1_rule
Vulnerability ID: V-1023
Group Title: GEN006240
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000381 |
The organization configures the information system to provide only essential capabilities. |
Controls
Number | Title |
---|---|
CM-7 |
Least Functionality |