STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system vulnerability assessment tool, host-based intrusion detection tool, and file integrity tool must notify the SA and the IAO of a security breach or a suspected security breach.

DISA Rule

SV-220062r603265_rule

Vulnerability Number

V-220062

Group Title

SRG-OS-000480

Rule Version

GEN006560

Severity

CAT II

CCI(s)

CCI-001266 - The information system notifies an organization-defined list of incident response personnel (identified by name and/or by role) of detected suspicious events.
CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Configure the security tools on the system to notify the IAO and SA when any security issues are detected.

Check Contents

For each security tool on the system, determine if the tool is configured to notify the IAO and SA of any detected security problem. If such notifications are not configured, this is a finding.

Vulnerability Number

V-220062

Documentable

False

Rule Version

GEN006560

Severity Override Guidance

For each security tool on the system, determine if the tool is configured to notify the IAO and SA of any detected security problem. If such notifications are not configured, this is a finding.

Check Content Reference

Target Key

4060

The system vulnerability assessment tool, host-based intrusion detection tool, and file integrity tool must notify the SA and the IAO of a security breach or a suspected security breach.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments