STIGQter: STIG Summary: Test and Development Zone D Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Oct 2018:

Development systems must have a firewall installed, configured, and enabled.

DISA Rule

SV-51297r1_rule

Vulnerability Number

V-39439

Group Title

ENTD0090 - A firewall is not present on the development system.

Rule Version

ENTD0090

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Install, configure, and enable either the OS or a third party firewall on the development system.

Check Contents

Review the development images to determine whether the OS or a third party firewall has been installed, configured, and enabled. If a firewall is not installed, configured, and enabled, this is a finding.

If there isn't any application development occurring in the zone environment, this requirement is not applicable.

Vulnerability Number

V-39439

Documentable

False

Rule Version

ENTD0090

Severity Override Guidance

Review the development images to determine whether the OS or a third party firewall has been installed, configured, and enabled. If a firewall is not installed, configured, and enabled, this is a finding.

If there isn't any application development occurring in the zone environment, this requirement is not applicable.

Check Content Reference

M

Target Key

1134

Comments