Check: 2.008
Windows Vista STIG:
2.008
(in versions v6 r42 through v6 r41)
Title
Local volumes are not formatted using NTFS. (Cat I impact)
Discussion
This is a category 1 finding because the ability to set access permissions and audit critical directories and files is only available by using the NTFS file system. The capability to assign access permissions to file objects is a DOD policy requirement. The FAT file system only provides the capability to make files read-only and hidden. The capability to change these attributes is not restricted to any users. An unauthorized individual could boot the machine from a floppy disk and gain full and unrecorded access to file data.
Check Content
Open Windows Explorer and use the Properties function on each fixed local partition/drive to examine the File System specified on the General Tab. If the File System does not specify NTFS, then this is a finding. Documentable Explanation: Some hardware vendors create a small FAT partition to store troubleshooting and recovery data. No other files should be stored here. This requirement should be documented with the IAO.
Fix Text
Format all partitions/drives to use NTFS.
Additional Identifiers
Rule ID: SV-29477r1_rule
Vulnerability ID: V-1081
Group Title: NTFS Requirement
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
Controls
Number | Title |
---|---|
AC-3 |
Access Enforcement |