STIGQter: STIG Summary: Solaris 11 X86 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.

DISA Rule

SV-220009r603268_rule

Vulnerability Number

V-220009

Group Title

SRG-OS-000425

Rule Version

SOL-11.1-060120

Severity

CAT II

CCI(s)

CCI-002420 - The information system maintains the confidentiality and/or integrity of information during preparation for transmission.

Weight

Fix Recommendation

All remote sessions must be conducted via SSH and IPsec. Ensure that SSH and IPsec are the only protocols used.

Check Contents

All remote sessions must be conducted via encrypted services and ports.

Ask the operator to document all configured external ports and protocols. If any unencrypted connections are used, this is a finding.

Vulnerability Number

V-220009

Documentable

False

Rule Version

SOL-11.1-060120

Severity Override Guidance

Check Content Reference

Target Key

4021

The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments