STIGQter STIGQter: STIG Summary: VMware ESX 3 Server Version: 1 Release: 2 Benchmark Date: 22 Jul 2016: Virtual machine OS log files are not saved before rollback.

DISA Rule

SV-16848r1_rule

Vulnerability Number

V-15906

Group Title

Virtual machine OS log files are not saved

Rule Version

ESX1100

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Archive all virtual machine OS log files before any virtual machine rollback.

Check Contents

Typically the OS log files are sent to a syslog server. Ask the IAO/SA the location of all archived OS logs that were saved before any rollback or revert to snapshot of the virtual machine. Correlate the logs to the rollback time to ensure that they are legitimate. If no logs have been saved, this is a finding.

Vulnerability Number

V-15906

Documentable

False

Rule Version

ESX1100

Severity Override Guidance

Typically the OS log files are sent to a syslog server. Ask the IAO/SA the location of all archived OS logs that were saved before any rollback or revert to snapshot of the virtual machine. Correlate the logs to the rollback time to ensure that they are legitimate. If no logs have been saved, this is a finding.

Check Content Reference

M

Responsibility

[Virtual Machine Administrator]

Target Key

1386

Comments