Check: AIX7-00-003123
IBM AIX 7.x STIG:
AIX7-00-003123
(in versions v3 r1 through v1 r1)
Title
NIS maps must be protected through hard-to-guess domain names on AIX. (Cat II impact)
Discussion
The use of hard-to-guess NIS domain names provides additional protection from unauthorized access to the NIS directory information.
Check Content
Check the domain name for NIS maps using command: # domainname If no ouput is returned or the name returned is simple to guess, such as the organization name, building, or room name, etc., this is a finding.
Fix Text
Change the NIS domain name to a value difficult to guess. Consult vendor documentation for the required procedure.
Additional Identifiers
Rule ID: SV-215418r991589_rule
Vulnerability ID: V-215418
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000366 |
Implement the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
CM-6 |
Configuration Settings |