DISA STIG Solaris 10 X86 v2r2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG Solaris 10 X86 v2r2

Updated: 5/16/2023

Authority: DISA STIG

Plugin: Unix

Revision: 1.5

Estimated Item Count: 779

File Details

Filename: DISA_STIG_Solaris_10_x86_v2r2.audit

Size: 1.19 MB

MD5: 7a528d92040d133f6170cfb5743633d4
SHA256: 10840b90820f746d9fb09135700e5a69ae19f14c38264ca2fcb8d8384eb99b2a

Audit Changelog

 
Revision 1.5

May 16, 2023

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.4

Apr 12, 2023

Functional Update
  • GEN000540 - Users must not be able to change passwords more than once every 24 hours - MINWEEKS
  • GEN000580 - The system must require passwords contain a minimum of 15 characters.
  • GEN000600 - The system must require passwords to contain at least one uppercase alphabetic character.
  • GEN000620 - The system must require passwords to contain at least one numeric character.
  • GEN000640 - The system must require passwords to contain at least one special character.
  • GEN000680 - The system must require passwords to contain no more than three consecutive repeating characters.
  • GEN000700 - User passwords must be changed at least every 60 days - configured
  • GEN000750 - The system must require at least eight characters be changed between the old and new passwords during a password change.
  • GEN000790 - The system must prevent the use of dictionary words for passwords - DICTIONDBDIR
  • GEN000790 - The system must prevent the use of dictionary words for passwords - DICTIONLIST
  • GEN000800 - The system must prohibit the reuse of passwords within five iterations.
Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • Variables updated.
Revision 1.3

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.2

Dec 7, 2022

Functional Update
  • GEN000280 - Direct logins must not be permitted to shared, default, application, or utility accounts.
Informational Update
  • GEN000280 - Direct logins must not be permitted to shared, default, application, or utility accounts.
Miscellaneous
  • Variables updated.
Added
  • GEN003623 - The system must use a separate file system for the system audit data path - df -h AUDIT_DIR
  • GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - SMB_CONF
  • GEN003930 - The hosts.lpd (or equivalent) file must be group-owned by root, bin, or sys - SMB_CONF
  • GEN003940 - The hosts.lpd (or equivalent) must have mode 0644 or less permissive - SMB_CONF
  • GEN004480 - The SMTP service log file must be owned by root - MAIL_LOG
  • GEN004500 - The SMTP service log file must have mode 0644 or less permissive - MAIL_LOG
Removed
  • GEN003623 - The system must use a separate file system for the system audit data path - df -h @AUDIT_DIR@
  • GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - @SMB_CONF@
  • GEN003930 - The hosts.lpd (or equivalent) file must be group-owned by root, bin, or sys - @SMB_CONF@
  • GEN003940 - The hosts.lpd (or equivalent) must have mode 0644 or less permissive - @SMB_CONF@
  • GEN004480 - The SMTP service log file must be owned by root - @MAIL_LOG@
  • GEN004500 - The SMTP service log file must have mode 0644 or less permissive - @MAIL_LOG@
Revision 1.1

Apr 25, 2022

Miscellaneous
  • Metadata updated.
  • References updated.