STIGQter STIGQter: STIG Summary: SOLARIS 9 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE Version: 1 Release: 9 Benchmark Date: 23 Oct 2015: The system must use time sources local to the enclave.

DISA Rule

SV-26305r1_rule

Vulnerability Number

V-22292

Group Title

GEN000244

Rule Version

GEN000244

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

If using ntpdate, remove NTP servers that are external to the enclave from the cron job running ntpdate.

If using the NTP daemon, remove the server line from /etc/inet/ntp.conf for each NTP server that is external to the enclave.

Check Contents

Check the root crontab for ntpdate entries.
# crontab -l | grep ntpdate
If the ntpdate command is invoked with NTP servers outside of the enclave, this is a finding.

Check the NTP daemon configuration.
# grep '^server' /etc/inet/ntp.conf
If an NTP server is listed outside of the enclave, this is a finding.

Vulnerability Number

V-22292

Documentable

False

Rule Version

GEN000244

Severity Override Guidance

Check the root crontab for ntpdate entries.
# crontab -l | grep ntpdate
If the ntpdate command is invoked with NTP servers outside of the enclave, this is a finding.

Check the NTP daemon configuration.
# grep '^server' /etc/inet/ntp.conf
If an NTP server is listed outside of the enclave, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

22

Comments