STIGQter: STIG Summary: Canonical Ubuntu 18.04 LTS Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The Ubuntu operating system must use a file integrity tool to verify correct operation of all security functions.

DISA Rule

SV-219343r610963_rule

Vulnerability Number

V-219343

Group Title

SRG-OS-000445-GPOS-00199

Rule Version

UBTU-18-010515

Severity

CAT II

CCI(s)

• CCI-002696 - The information system verifies correct operation of organization-defined security functions.

Weight

10

Fix Recommendation

Install the AIDE package by running the following command:

# sudo apt-get install aide

Check Contents

Verify that Advanced Intrusion Detection Environment (AIDE) is installed and verifies the correct operation of all security functions.

Check that the AIDE package is installed with the following command:

# sudo dpkg -l | grep aide

aide/xenial,now 0.16~a2.git20130520-3 amd64 [installed]

If AIDE is not installed, ask the System Administrator how file integrity checks are performed on the system.

If there is no application installed to perform integrity checks, this is a finding.

Vulnerability Number

V-219343

Documentable

False

Rule Version

UBTU-18-010515

Severity Override Guidance

Verify that Advanced Intrusion Detection Environment (AIDE) is installed and verifies the correct operation of all security functions.

Check that the AIDE package is installed with the following command:

# sudo dpkg -l | grep aide

aide/xenial,now 0.16~a2.git20130520-3 amd64 [installed]

If AIDE is not installed, ask the System Administrator how file integrity checks are performed on the system.

If there is no application installed to perform integrity checks, this is a finding.

Check Content Reference

M

Target Key

4055

Comments