STIGQter: STIG Summary: Domain Name System (DNS) Security Requirements Guide Version: 2 Release: 4 Benchmark Date: 23 Oct 2015:

The DNS implementation must protect the authenticity of communications sessions for dynamic updates.

DISA Rule

SV-69073r1_rule

Vulnerability Number

V-54827

Group Title

SRG-APP-000219-DNS-000029

Rule Version

SRG-APP-000219-DNS-000029

Severity

CAT II

CCI(s)

CCI-001184 - The information system protects the authenticity of communications sessions.

Weight

Fix Recommendation

Configure the DNS server to employ mechanisms to protect the authenticity of communications sessions for dynamic updates.

Check Contents

Review the DNS server configuration to determine if communication sessions for dynamic updates are provided authenticity protection.

If communications sessions do not employ authenticity protections, this is a finding.

Vulnerability Number

V-54827

Documentable

False

Rule Version

SRG-APP-000219-DNS-000029

Severity Override Guidance

Check Content Reference

Target Key

2355

The DNS implementation must protect the authenticity of communications sessions for dynamic updates.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments