Detections
Analytics

DISA STIG Solaris 11 SPARC v2r2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG Solaris 11 SPARC v2r2

Updated: 10/27/2021

Authority: DISA STIG

Plugin: Unix

Revision: 1.3

Estimated Item Count: 345

Audit Changelog

 
Revision 1.3

Oct 27, 2021

Functional Update
  • SOL-11.1-010220 - The audit system must be configured to audit file deletions.
  • SOL-11.1-010230 - The audit system must be configured to audit account creation.
  • SOL-11.1-010250 - The audit system must be configured to audit account modification.
  • SOL-11.1-010260 - The operating system must automatically audit account disabling actions.
  • SOL-11.1-010270 - The operating system must automatically audit account termination.
  • SOL-11.1-010290 - The operating system must ensure unauthorized, security-relevant configuration changes detected are tracked.
  • SOL-11.1-010300 - The audit system must be configured to audit all administrative, privileged, and security actions.
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getflags
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags lo
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags na
  • SOL-11.1-010320 - The audit system must be configured to audit all discretionary access control permission modifications.
  • SOL-11.1-010330 - The audit system must be configured to audit the loading and unloading of dynamic kernel modules.
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ex
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags fa
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ps
  • SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - '.conf'
  • SOL-11.1-080020 - The system must implement non-executable program stacks.
  • SOL-11.1-080030 - Address Space Layout Randomization (ASLR) must be enabled.
Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.2

Jul 30, 2021

Functional Update
  • SOL-11.1-010220 - The audit system must be configured to audit file deletions.
  • SOL-11.1-010230 - The audit system must be configured to audit account creation.
  • SOL-11.1-010250 - The audit system must be configured to audit account modification.
  • SOL-11.1-010260 - The operating system must automatically audit account disabling actions.
  • SOL-11.1-010270 - The operating system must automatically audit account termination.
  • SOL-11.1-010290 - The operating system must ensure unauthorized, security-relevant configuration changes detected are tracked.
  • SOL-11.1-010300 - The audit system must be configured to audit all administrative, privileged, and security actions.
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getflags
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags lo
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags na
  • SOL-11.1-010320 - The audit system must be configured to audit all discretionary access control permission modifications.
  • SOL-11.1-010330 - The audit system must be configured to audit the loading and unloading of dynamic kernel modules.
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ex
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags fa
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ps
  • SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - '.conf'
  • SOL-11.1-080020 - The system must implement non-executable program stacks.
  • SOL-11.1-080030 - Address Space Layout Randomization (ASLR) must be enabled.
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.1

Jun 17, 2021

Functional Update
  • SOL-11.1-010220 - The audit system must be configured to audit file deletions.
  • SOL-11.1-010230 - The audit system must be configured to audit account creation.
  • SOL-11.1-010250 - The audit system must be configured to audit account modification.
  • SOL-11.1-010260 - The operating system must automatically audit account disabling actions.
  • SOL-11.1-010270 - The operating system must automatically audit account termination.
  • SOL-11.1-010290 - The operating system must ensure unauthorized, security-relevant configuration changes detected are tracked.
  • SOL-11.1-010300 - The audit system must be configured to audit all administrative, privileged, and security actions.
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getflags
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags lo
  • SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags na
  • SOL-11.1-010320 - The audit system must be configured to audit all discretionary access control permission modifications.
  • SOL-11.1-010330 - The audit system must be configured to audit the loading and unloading of dynamic kernel modules.
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ex
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags fa
  • SOL-11.1-010340 - The audit system must be configured to audit failed attempts to access files and programs - getflags ps
  • SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - '.conf'
  • SOL-11.1-080020 - The system must implement non-executable program stacks.
  • SOL-11.1-080030 - Address Space Layout Randomization (ASLR) must be enabled.
Miscellaneous
  • Metadata updated.
  • References updated.