STIGQter STIGQter: STIG Summary: z/OS BMC CONTROL-D for TSS STIG Version: 6 Release: 7 Benchmark Date: 26 Oct 2018: BMC CONTROL-D security exits are not installed or configured properly.

DISA Rule

SV-32015r1_rule

Vulnerability Number

V-17985

Group Title

ZB000060

Rule Version

ZCTD0060

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The System programmer responsible for the BMC CONTROL-D will review the BMC CONTROL-D operating environment. Ensure that the following security exit(s) is (are) installed properly. Determine if the site has modified the following security exit(s):

CTDSE01
CTDSE04
CTDSE08
CTDSE19
CTDSE24
CTDSE28

Ensure that the security exit(s) has (have) not been modified.

If the security exit(s) has (have) been modified, ensure the security exit(s) has (have) been checked as to not violate any security integrity within the system and approval documentation is on file.

Check Contents

Interview the systems programmer responsible for the BMC CONTROL-D. Determine if the site has modified the following security exit(s):

CTDSE01
CTDSE04
CTDSE08
CTDSE19
CTDSE24
CTDSE28

Ensure the above security exit(s) has (have) not been modified.

If the above security exit(s) has (have) been modified, ensure that the security exit(s) has (have) been approved by the site systems programmer and the approval is on file for examination.

Vulnerability Number

V-17985

Documentable

False

Rule Version

ZCTD0060

Severity Override Guidance

Interview the systems programmer responsible for the BMC CONTROL-D. Determine if the site has modified the following security exit(s):

CTDSE01
CTDSE04
CTDSE08
CTDSE19
CTDSE24
CTDSE28

Ensure the above security exit(s) has (have) not been modified.

If the above security exit(s) has (have) been modified, ensure that the security exit(s) has (have) been approved by the site systems programmer and the approval is on file for examination.

Check Content Reference

M

Responsibility

Systems Programmer

Target Key

1998

Comments