DISA BIND 9.x STIG v2r2

Audit Details

Name: DISA BIND 9.x STIG v2r2

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Unix

Revision: 1.1

Estimated Item Count: 106

File Details

Filename: DISA_STIG_BIND_9_v2r2.audit

Size: 315 kB

Audit Changelog

 
Revision 1.1

Apr 25, 2022

Functional Update
  • BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - rsyslog/syslog
  • BIND-9X-001100 - The BIND 9.x server implementation must uniquely identify and authenticate the other DNS server before responding to a server-to-server transaction, zone transfer and/or dynamic update request using cryptographically based bidirectional authentication to protect the integrity of the information in transit - master allow-transfer
  • BIND-9X-001100 - The BIND 9.x server implementation must uniquely identify and authenticate the other DNS server before responding to a server-to-server transaction, zone transfer and/or dynamic update request using cryptographically based bidirectional authentication to protect the integrity of the information in transit - secondary keys
Miscellaneous
  • References updated.