Navigate

Check: GEN004600

SUSE Linux Enterprise Server v11 for System z STIG: GEN004600 (in versions v1 r12 through v1 r9)

Title

The SMTP service must be an up-to-date version. (Cat I impact)

Discussion

The SMTP service version on the system must be current to avoid exposing vulnerabilities present in unpatched versions.

Check Content

Determine the version of the SMTP service software. Procedure: #rpm -q sendmail SUSE sendmail 8.14.3-50.20.1is the latest required version. If SUSE sendmail is installed and the version is not at least8.14.3.-50.20.1, this is a finding. #rpm -q postfix SUSE postfix-2.5.6-5.8.1 is the latest required version. If postfix is installed and the version is not at least2.5.6-5.8.1, this is a finding.

Fix Text

Obtain and install a newer version of the SMTP service software (sendmail or Postfix) fromNovell.

Additional Identifiers

Rule ID: SV-45869r1_rule

Vulnerability ID: V-4689

Group Title: GEN004600

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-001230	The organization incorporates flaw remediation into the organizational configuration management process.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
SI-2	Flaw Remediation