STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

AIX sendmail logging must not be set to less than nine in the sendmail.cf file.

DISA Rule

SV-215344r508663_rule

Vulnerability Number

V-215344

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

AIX7-00-003038

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Edit /etc/mail/sendmail.cf file, locate the "O LogLevel" line, or add a new line if necessary, and change the log level to "9". The new LogLevel line should be:
O LogLevel=9

Check Contents

Check if "Sendmail" logging is set to level "9" by running command:

# grep "^O LogLevel" /etc/mail/sendmail.cf
O LogLevel=9

If logging is set to less than "9", this is a finding.

Vulnerability Number

V-215344

Documentable

False

Rule Version

AIX7-00-003038

Severity Override Guidance

Check if "Sendmail" logging is set to level "9" by running command:

# grep "^O LogLevel" /etc/mail/sendmail.cf
O LogLevel=9

If logging is set to less than "9", this is a finding.

Check Content Reference

Target Key

4012

AIX sendmail logging must not be set to less than nine in the sendmail.cf file.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments