DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SSL

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.

Solution

Use the following commands to set the protocol and ports as per PPSM guidance:

$db2 update dbm cfg using svcename [service_name | port_number]

$db2 update dbm cfg using ssl_svcename [ssl_service_name | port_number]


Note: http://www.ibm.com/support/knowledgecenter/en/SSEPGG_10.5.0/com.ibm.db2.luw.admin.sec.doc/doc/t0025241.html

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_DB2_V10-5_V1R4_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CAT|II, CCI|CCI-001762, Rule-ID|SV-89269r1_rule, STIG-ID|DB2X-00-008300, Vuln-ID|V-74595

Plugin: Unix

Control ID: 3748b553af69fc35fb41b0ea7e929f3d6233cccd89d6bc736bf6b2fad9901dd2