Detections
Analytics
DB2X-00-005300 - In the event of a system failure, DB2 must preserve any information necessary to determine cause of failure and any information necessary to return to operations with least disruption to mission processes - History
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
Failure to a known state can address safety or security in accordance with the mission/business needs of the organization.Failure to a known secure state helps prevent a loss of confidentiality, integrity, or availability in the event of a failure of the information system or a component of the system.
Preserving information system state information helps to facilitate system restart and return to the operational mode of the organization with less disruption of mission/business processes.
Since it is usually not possible to test this capability in a production environment, systems should either be validated in a testing environment or prior to installation. This requirement is normally a function of the design of the IDPS component. Compliance can be verified by acceptance/validation processes or vendor attestation.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
Modify the database backup plan to include whether the database needs to be in archive logging, the correct recovery model to be used, the backup schedule, and the plan for testing the database restoration.Update db2 logging to archive logging for the database which requires roll forward recovery using the following db2 command:
$db2 update db2 cfg for <database name> using LOGARCHMETH1 <value>
Note: Set the value as per your online file system or backup vendor like TSM
Verify and correct the scheduled backup jobs.
Correct any issues that have been causing backups to fail.
Test the restoration of the database at least once a year; correct any issues that cause it to fail. Maintain a record of these tests.
Note:
http://www.ibm.com/support/knowledgecenter/SSEPGG_10.1.0/com.ibm.db2.luw.admin.config.doc/doc/r0011448.html
http://www.ibm.com/support/knowledgecenter/SSEPGG_10.5.0/com.ibm.db2.luw.admin.cmd.doc/doc/r0001991.html
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_DB2_V10-5_V1R4_STIG.zip
Item Details
Audit Name: DISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
Category: CONTINGENCY PLANNING
References: 800-53|CP-9, CAT|II, CCI|CCI-001665, Rule-ID|SV-89173r1_rule, STIG-ID|DB2X-00-005300, Vuln-ID|V-74499
Plugin: Windows
Control ID: bc2a0ef920152f419d0ce74da5e882567b86073395942bf220d44b0e29f04975