An error occurred:

Check: GEN006540

VMware ESX 3 Server: GEN006540 (in version v1 r2)

Title

A system vulnerability tool must be run on the system monthly. (Cat II impact)

Discussion

A system vulnerability tool compares file and directory integrity to the baseline. It can alert the system administrator to unauthorized changes in files or directories. Unauthorized changes in files and directories can give a user unauthorized access to system resources.

Check Content

Perform the following to check for a security tool executing monthly: # crontab –l Check for the existence of a vulnerability assessment tool being scheduled and run monthly. If no entries exist in the crontab, ask the SA if a vulnerability tool is run monthly. In addition, if the tool is run monthly, ask to see any reports that may have been generated from the tool. If a tool is not run monthly then this a finding.

Fix Text

Add a monthly cronjob to run the system vulnerability tool.

Additional Identifiers

Rule ID: SV-939r2_rule

Vulnerability ID: V-939

Group Title: GEN006540

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
No CCIs are assigned to this check

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
No controls are assigned to this check