Navigate

Check: CNTR-PC-000880

Palo Alto Networks Prisma Cloud Compute STIG: CNTR-PC-000880 (in versions v2 r2 through v1 r1)

Title

Prisma Cloud Compute must not write sensitive data to event logs. (Cat II impact)

Discussion

The determination of what is sensitive data varies from organization to organization. The organization must ensure the recipients for the event log information have a need to know and the log is sanitized based on the audience.

Check Content

Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. Inspect the Log Scrubbing section. If "Automatically scrub secrets from runtime events" is "off", this is a finding.

Fix Text

Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. In the Log Scrubbing section, set "Automatically scrub secrets from runtime events" to "on" and click "Save".

Additional Identifiers

Rule ID: SV-253541r961167_rule

Vulnerability ID: V-253541

Group Title: SRG-APP-000266-CTR-000625

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001312	Generate error messages that provide information necessary for corrective actions without revealing information that could be exploited.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
SI-11	Error Handling