SOL-11.1-020030 - The operating system must protect audit tools from unauthorized access.

Information

Failure to maintain system configurations may result in privilege escalation.

Solution

The Software Installation Profile is required.

Configure the package system to ensure that digital signatures are verified.

# pfexec pkg set-property signature-policy verify

Check that package permissions are configured per vendor requirements.

# pfexec pkg verify

If any errors are reported unrelated to STIG changes, use:

# pfexec pkg fix

to bring configuration settings and permissions into factory compliance.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_11_x86_V3R1_STIG.zip

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-9, CAT|II, CCI|CCI-001493, Rule-ID|SV-216047r958610_rule, STIG-ID|SOL-11.1-020030, STIG-Legacy|SV-60757, STIG-Legacy|V-47885, Vuln-ID|V-216047

Plugin: Unix

Control ID: 17c18814addeac5d4265f705bdf590e804c999a64b776ec66120514b8f92bbf5