An error occurred:

Check: GEN000000-SOL00120

Solaris 9 X86 STIG: GEN000000-SOL00120 (in version v1 r9)

Title

The ASET master files must be located in the /usr/aset/masters directory. (Cat II impact)

Discussion

If ASET is used and the master files (tune.high, tune.med, tune.low, and uid_aliases) are not located in the proper place, ASET cannot operate correctly and valuable security findings could be lost.

Check Content

Verify ASET is being used. # crontab -l |grep aset If there is an output, then check to make sure the files in question are in the /usr/aset/masters directory.       #       ls -l /usr/aset/masters The following files should be in the listing: tune.high, tune.low, tune.med, and uid_aliases. If any of the files are not in the directory listing, this is a finding.

Fix Text

Install the default ASET configuration files.

Additional Identifiers

Rule ID: SV-36751r1_rule

Vulnerability ID: V-4313

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000032

Enforce information flow control using organization-defined security policy filters as a basis for flow control decisions for organization-defined information flows.
CCI-000225

Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) which are necessary to accomplish assigned organizational tasks.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-4(8)

Security Policy Filters
AC-6

Least Privilege