Navigate

Check: SOL-11.1-020230

Solaris 11 X86 STIG: SOL-11.1-020230 (in versions v3 r2 through v1 r10)

Title

The operating system must employ automated mechanisms to prevent program execution in accordance with the organization-defined specifications. (Cat II impact)

Discussion

Operating systems are capable of providing a wide variety of functions and services. Execution must be disabled based on organization-defined specifications.

Check Content

Identify the packages installed on the system. # pkg list Any unauthorized software packages listed in the output are a finding.

Fix Text

The Software Installation profile is required. Identify packages installed on the system: # pkg list uninstall unauthorized packages: # pfexec pkg uninstall [ package name]

Additional Identifiers

Rule ID: SV-219999r958804_rule

Vulnerability ID: V-219999

Group Title: SRG-OS-000368

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001764	Prevent program execution in accordance with organization-defined policies, rules of behavior, and/or access agreements regarding software program usage and restrictions; rules authorizing the terms and conditions of software program usage.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-7(2)	Prevent Program Execution