STIGQter STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 25 Apr 2019: AIX sendmail logging must not be set to less than nine in the sendmail.cf file.

DISA Rule

SV-101733r1_rule

Vulnerability Number

V-91635

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

AIX7-00-003038

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Edit /etc/mail/sendmail.cf file, locate the "O LogLevel" line, or add a new line if necessary, and change the log level to "9". The new LogLevel line should be:
O LogLevel=9

Check Contents

Check if "Sendmail" logging is set to level "9" by running command:

# grep "^O LogLevel" /etc/mail/sendmail.cf
O LogLevel=9

If logging is set to less than "9", this is a finding.

Vulnerability Number

V-91635

Documentable

False

Rule Version

AIX7-00-003038

Severity Override Guidance

Check if "Sendmail" logging is set to level "9" by running command:

# grep "^O LogLevel" /etc/mail/sendmail.cf
O LogLevel=9

If logging is set to less than "9", this is a finding.

Check Content Reference

M

Target Key

3491

Comments