Check: SOL-11.1-020220
Solaris 11 x86 STIG:
SOL-11.1-020220
(in versions v2 r10 through v1 r10)
Title
The operating system must be configured to provide essential capabilities. (Cat II impact)
Discussion
Operating systems are capable of providing a wide variety of functions and services. Execution must be disabled based on organization-defined specifications.
Check Content
Identify the packages installed on the system. # pkg list Any unauthorized software packages listed in the output are a finding.
Fix Text
The Software Installation profile is required. Identify packages installed on the system: # pkg list uninstall unauthorized packages: # pfexec pkg uninstall [ package name]
Additional Identifiers
Rule ID: SV-216062r603268_rule
Vulnerability ID: V-216062
Group Title: SRG-OS-000095
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000381 |
The organization configures the information system to provide only essential capabilities. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-7 |
Least Functionality |