STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system must not use UDP for NIS/NIS+.

DISA Rule

SV-227041r603265_rule

Vulnerability Number

V-227041

Group Title

SRG-OS-000095

Rule Version

GEN006380

Severity

CAT I

CCI(s)

CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

Fix Recommendation

Configure the system to not use UDP for NIS and NIS+. Consult vendor documentation for the required procedure.

Check Contents

If the system does not use NIS or NIS+, this is not applicable.

Check if NIS or NIS+ is implemented using UDP.

Procedure:
# rpcinfo -p | grep yp | grep udp

If NIS or NIS+ is implemented using UDP, this is a finding.

Vulnerability Number

V-227041

Documentable

False

Rule Version

GEN006380

Severity Override Guidance

Check Content Reference

Target Key

4060

The system must not use UDP for NIS/NIS+.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments