STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The .Xauthority utility must only permit access to authorized hosts.

DISA Rule

SV-216313r603267_rule

Vulnerability Number

V-216313

Group Title

SRG-OS-000480

Rule Version

SOL-11.1-020550

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-000225 - The organization employs the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.

Weight

10

Fix Recommendation

Remove unauthorized clients from the xauth configuration.

Procedure:
# xauth remove <display name>

Check Contents

If X Display Manager (XDM) is not used on the system, this is not applicable.

Determine if XDM is running.

Procedure:
# ps -ef | grep xdm

Check the X Window system access is limited to authorized clients.

Procedure:
# xauth
xauth> list

Ask the SA if the clients listed are authorized.

If any are not, this is a finding.

Vulnerability Number

V-216313

Documentable

False

Rule Version

SOL-11.1-020550

Severity Override Guidance

If X Display Manager (XDM) is not used on the system, this is not applicable.

Determine if XDM is running.

Procedure:
# ps -ef | grep xdm

Check the X Window system access is limited to authorized clients.

Procedure:
# xauth
xauth> list

Ask the SA if the clients listed are authorized.

If any are not, this is a finding.

Check Content Reference

M

Target Key

4022

Comments