STIGQter STIGQter: STIG Summary: Oracle Linux 5 Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 26 Oct 2018: Inetd or xinetd logging/tracing must be enabled.

DISA Rule

SV-63989r1_rule

Vulnerability Number

V-1011

Group Title

GEN003800

Rule Version

GEN003800

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Edit each file in the /etc/xinetd.d directory and the /etc/xinetd.conf file to contain:
log_type = SYSLOG authpriv
log_on_success = HOST PID USERID EXIT
log_on_failure = HOST USERID

The /etc/xinetd.conf file contains default values that will hold true for all services unless individually modified in the service's xinetd.d file.

To make the new settings effective, restart the xinetd service:
# service xinetd restart

Check Contents

The /etc/xinetd.conf file and each file in the /etc/xinetd.d directory file should be examined for the following:

Procedure:
log_type = SYSLOG authpriv
log_on_success = HOST PID USERID EXIT
log_on_failure = HOST USERID

If xinetd is running and logging is not enabled, this is a finding.

Vulnerability Number

V-1011

Documentable

False

Rule Version

GEN003800

Severity Override Guidance

The /etc/xinetd.conf file and each file in the /etc/xinetd.d directory file should be examined for the following:

Procedure:
log_type = SYSLOG authpriv
log_on_success = HOST PID USERID EXIT
log_on_failure = HOST USERID

If xinetd is running and logging is not enabled, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

2207

Comments