Check: GEN007840
HP-UX 11.31 STIG:
GEN007840
(in versions v1 r19 through v1 r13)
Title
The DHCP client must be disabled if not needed. (Cat II impact)
Discussion
DHCP allows for the unauthenticated configuration of network parameters on the system by exchanging information with a DHCP server.
Check Content
Check the DHCP_ENABLE setting in /etc/rc.config.d/netconf # /etc/rc.config.d/netconf| tr '\011' ' ' | tr -s ' ' | \ sed -e 's/^[ \t]*//' | grep -v "^#" |grep "DHCP_ENABLE" If the setting is set to 1, this is a finding.
Fix Text
Disable the DHCP client configuration. Edit /etc/rc.config.d/netconf and set the DHCP_ENABLE setting to 0.
Additional Identifiers
Rule ID: SV-26932r1_rule
Vulnerability ID: V-22548
Group Title: GEN007840
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |