STIGQter STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The system must not have 6to4 enabled.

DISA Rule

SV-227960r603266_rule

Vulnerability Number

V-227960

Group Title

SRG-OS-000480

Rule Version

GEN007780

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Disable the active 6to4 tunnel.
# ifconfig <tunnel> down

Check the /etc/hostname* files for startup configuration for the tunnel, and edit or delete as appropriate to prevent the tunnel creation on startup.

Check Contents

# ifconfig -a
If a tunnel interface is displayed with an IPv4 tunnel source address, an IPv6 interface address, and no tunnel destination address, this is a finding.

Vulnerability Number

V-227960

Documentable

False

Rule Version

GEN007780

Severity Override Guidance

# ifconfig -a
If a tunnel interface is displayed with an IPv4 tunnel source address, an IPv6 interface address, and no tunnel destination address, this is a finding.

Check Content Reference

M

Target Key

4061

Comments