STIGQter: STIG Summary: IBM z/OS RACF Security Technical Implementation Guide Version: 8 Release: 3 Benchmark Date: 23 Apr 2021:

The IBM z/OS UNIX Telnet server warning banner must be properly specified.

DISA Rule

SV-223868r604139_rule

Vulnerability Number

V-223868

Group Title

SRG-OS-000228-GPOS-00088

Rule Version

RACF-UT-000050

Severity

CAT II

CCI(s)

CCI-001388 - The information system, for publicly accessible systems, includes a description of the authorized uses of the system.
CCI-001386 - The information system, for publicly accessible systems, displays references, if any, to recording that are consistent with privacy accommodations for such systems that generally prohibit those activities.
CCI-001387 - The information system, for publicly accessible systems, displays references, if any, to auditing that are consistent with privacy accommodations for such systems that generally prohibit those activities.
CCI-001384 - The information system, for publicly accessible systems, displays system use information organization-defined conditions before granting further access.
CCI-001385 - The information system, for publicly accessible systems, displays references, if any, to monitoring that are consistent with privacy accommodations for such systems that generally prohibit those activities.

Weight

Fix Recommendation

Configure the startup parameters in the inetd.conf file for otelnetd to exclude option -h.
Note: -h indicates that the logon banner should not be displayed.

Check Contents

From the ISPF Command Shell enter:
ISHELL

Enter /etc/ for a pathname - you may need to issue a CD /etc/
select FILE NAME inetd.conf

If Option -h is included on the otelnetd command, this is a finding.

The IBM z/OS UNIX Telnet server warning banner must be properly specified.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments