Detections
Analytics
GEN005580 - A system used for routing must not run other network services or applications.
Information
Installing extraneous software on a system designated as a dedicated router poses a security threat to the system and the network. Should an attacker gain access to the router through the unauthorized software, the entire network is susceptible to malicious activity.NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
Ensure only authorized software is loaded on a designated router. Authorized software will be limited to the most current version of routing protocols and SSH for system administration purposes.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_SPARC_V2R4_STIG.zip
Item Details
Audit Name: DISA STIG Solaris 10 SPARC v2r4
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-227004r603265_rule, STIG-ID|GEN005580, STIG-Legacy|SV-4398, STIG-Legacy|V-4398, Vuln-ID|V-227004
Plugin: Unix
Control ID: 16c209f27461fa4981f8de49ee7b2058229dfeb8481ed47a1f68652f7905f3bf