STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system clock must be synchronized to an authoritative DoD time source.

DISA Rule

SV-219563r603263_rule

Vulnerability Number

V-219563

Group Title

SRG-OS-000355

Rule Version

OL6-00-000248

Severity

CAT II

CCI(s)

• CCI-001891 - The information system compares internal information system clocks on an organization-defined frequency with an organization-defined authoritative time source.

Weight

10

Fix Recommendation

To specify a remote NTP server for time synchronization, edit the file "/etc/ntp.conf". Add or correct the following lines, substituting the IP or hostname of a remote NTP server for ntpserver.

server [ntpserver]

This instructs the NTP software to contact that remote server to obtain time data.

Check Contents

A remote NTP server should be configured for time synchronization. To verify one is configured, open the following file.

/etc/ntp.conf

In the file, there should be a section similar to the following:

# --- OUR TIMESERVERS -----
server [ntpserver]

If this is not the case, this is a finding.

Vulnerability Number

V-219563

Documentable

False

Rule Version

OL6-00-000248

Severity Override Guidance

A remote NTP server should be configured for time synchronization. To verify one is configured, open the following file.

/etc/ntp.conf

In the file, there should be a section similar to the following:

# --- OUR TIMESERVERS -----
server [ntpserver]

If this is not the case, this is a finding.

Check Content Reference

M

Target Key

2928

Comments