Check: GEN005380
HP-UX 11.31 STIG:
GEN005380
(in versions v1 r19 through v1 r13)
Title
If the system is a Network Management System (NMS) server, it must only run the NMS and any software required by the NMS. (Cat II impact)
Discussion
Installing extraneous software on a system designated as a dedicated NMS server poses a security threat to the system and the network. Should an attacker gain access to the NMS through unauthorized software, the entire network may be susceptible to malicious activity.
Check Content
NOTE: This will virtually always require a manual review. Ask the SA if this is an NMS server. If it is an NMS server, then ask what other applications run on it. If there is anything other than network management software and DBMS software used only for the storage and inquiry of NMS data, this is a finding.
Fix Text
Ensure only authorized software is loaded on a designated NMS server. Authorized software is limited to the NMS software itself, a database management system for the NMS server if necessary, and network management software.
Additional Identifiers
Rule ID: SV-35181r1_rule
Vulnerability ID: V-4392
Group Title: GEN005380
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-001208 |
The organization partitions the information system into components residing in separate physical domains (or environments) as deemed necessary. |
Controls
| Number | Title |
|---|---|
| No controls are assigned to this check |