GEN006600 - The system's access control program must log each system access attempt - rsyslog *.debug

Information

If access attempts are not logged, then multiple attempts to log on to the system by an unauthorized user may go undetected.

Solution

Configure the access restriction program to log every access attempt. Ensure the implementation instructions for tcp_wrappers are followed so system access attempts are recorded to the system log files. If an alternate application is used, it must support this function.

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R17_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12, CAT|II, CCI|CCI-000126, Group-ID|V-941, Rule-ID|SV-37757r3_rule, STIG-ID|GEN006600

Plugin: Unix

Control ID: 13d833e8be0db8eb1543f98c2856079792db67dc58392504c72f5eae933e70b7