Check: GEN003800
Solaris 9 X86 STIG:
GEN003800
(in version v1 r9)
Title
Inetd or xinetd logging/tracing must be enabled. (Cat III impact)
Discussion
Inetd or xinetd logging and tracing allows the system administrators to observe the IP addresses connecting to their machines and to observe what network services are being sought. This provides valuable information when trying to find the source of malicious users and potential malicious users.
Check Content
# ps -ef |grep inetd |grep "-t" If no results are returned, this is a finding.
Fix Text
Edit the inetd startup script and add the -t parameter.
Additional Identifiers
Rule ID: SV-27429r1_rule
Vulnerability ID: V-1011
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000134 |
The information system generates audit records containing information that establishes the outcome of the event. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AU-3 |
Content Of Audit Records |