2.008 - Local volumes are not formatted using NTFS.

Information

This is a category 1 finding because the ability to set access permissions and audit critical directories and files is only available by using the NTFS file system. The capability to assign access permissions to file objects is a DOD policy requirement.
The FAT file system only provides the capability to make files read-only and hidden. The capability to change these attributes is not restricted to any users. An unauthorized individual could boot the machine from a floppy disk and gain full and unrecorded access to file data.

Solution

Format all partitions/drives to use NTFS.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2008_MS_V6R46_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(4), CAT|I, CCI|CCI-000213, Rule-ID|SV-29478r1_rule, STIG-ID|2.008, Vuln-ID|V-1081

Plugin: Windows

Control ID: f56990976bb6b7976d5ed56c90530eb4038dc6e7e831b97446f4bbb9f2104ab5