Navigate

Check: GEN008800

Solaris 9 X86 STIG: GEN008800 (in version v1 r9)

Title

The system package management tool must cryptographically verify the authenticity of software packages during installation. (Cat III impact)

Discussion

To prevent the installation of software from unauthorized sources, the system package management tool must use cryptographic algorithms to verify the packages are authentic.

Check Content

Verify package signature validation is not disabled. # grep "authentication=quit" /var/sadm/install/admin/default If no configuration is returned, this is a finding.

Fix Text

Edit /var/sadm/install/admin/default and set the authentication setting to quit.

Additional Identifiers

Rule ID: SV-26991r1_rule

Vulnerability ID: V-22588

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000351	The organization defines critical software programs that the information system will prevent from being installed if such software programs are not signed with a recognized and approved certificate.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
No controls are assigned to this check