Check: GEN000000-SOL00120
Solaris 9 X86 STIG:
GEN000000-SOL00120
(in version v1 r9)
Title
The ASET master files must be located in the /usr/aset/masters directory. (Cat II impact)
Discussion
If ASET is used and the master files (tune.high, tune.med, tune.low, and uid_aliases) are not located in the proper place, ASET cannot operate correctly and valuable security findings could be lost.
Check Content
Verify ASET is being used. # crontab -l |grep aset If there is an output, then check to make sure the files in question are in the /usr/aset/masters directory. # ls -l /usr/aset/masters The following files should be in the listing: tune.high, tune.low, tune.med, and uid_aliases. If any of the files are not in the directory listing, this is a finding.
Fix Text
Install the default ASET configuration files.
Additional Identifiers
Rule ID: SV-36751r1_rule
Vulnerability ID: V-4313
Group Title:
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000032 |
The information system enforces information flow control using organization-defined security policy filters as a basis for flow control decisions for organization-defined information flows. |
| CCI-000225 |
The organization employs the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions. |