Detections
Analytics
1.024 - System files are not checked for unauthorized changes.
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
Comparing system files against a baseline on a regular basis will detect the possibility of introduction of malicious code on the system.NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
The site should use a tool to compare system files (*.exe, *.bat, *.com, *.cmd and *.dll) on servers against a baseline, on a weekly basis.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2008_DC_V6R47_STIG.zip
Item Details
Audit Name: DISA Windows Server 2008 DC STIG v6r47
References: CAT|II, CCI|CCI-000366, Rule-ID|SV-29692r1_rule, STIG-ID|1.024, Vuln-ID|V-2907
Plugin: Windows
Control ID: d5f007e634b6592616387597b899660bab70e8c2acb3ab4b3c790701ddf14393