STIGQter: STIG Summary: Firewall Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

The firewall must protect the traffic log from unauthorized deletion of local log files and log records.

DISA Rule

SV-206688r604133_rule

Vulnerability Number

V-206688

Group Title

SRG-NET-000100

Rule Version

SRG-NET-000100-FW-000023

Severity

CAT II

CCI(s)

• CCI-000164 - The information system protects audit information from unauthorized deletion.

Weight

10

Fix Recommendation

Validate the firewall includes a baseline cryptographic module that provides confidentiality and integrity services for authentication and for protecting communications with adjacent systems.

Configure role-based, fine-grained permissions management for controlling commands needed to delete log files and records.

Check Contents

Verify the firewall's fine-grained permissions are configured to prevent unauthorized deletion of local log files or log records.

If the firewall does not protect traffic log records and log files from unauthorized deletion while stored locally, this is a finding.

Vulnerability Number

V-206688

Documentable

False

Rule Version

SRG-NET-000100-FW-000023

Severity Override Guidance

Verify the firewall's fine-grained permissions are configured to prevent unauthorized deletion of local log files or log records.

If the firewall does not protect traffic log records and log files from unauthorized deletion while stored locally, this is a finding.

Check Content Reference

M

Target Key

2912

Comments