Check: CNTR-PC-000880
Palo Alto Networks Prisma Cloud Compute STIG:
CNTR-PC-000880
(in versions v1 r3 through v1 r1)
Title
Prisma Cloud Compute must not write sensitive data to event logs. (Cat II impact)
Discussion
The determination of what is sensitive data varies from organization to organization. The organization must ensure the recipients for the event log information have a need to know and the log is sanitized based on the audience.
Check Content
Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. Inspect the Log Scrubbing section. If "Automatically scrub secrets from runtime events" is "off", this is a finding.
Fix Text
Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. In the Log Scrubbing section, set "Automatically scrub secrets from runtime events" to "on" and click "Save".
Additional Identifiers
Rule ID: SV-253541r879655_rule
Vulnerability ID: V-253541
Group Title: SRG-APP-000266-CTR-000625
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001312 |
The information system generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries. |
Controls
Number | Title |
---|---|
SI-11 |
Error Handling |