STIGQter STIGQter: STIG Summary: BIND 9.x Security Technical Implementation Guide Version: 1 Release: 8 Benchmark Date: 24 Jan 2020: The print-time variable for the configuration of BIND 9.x server logs must be configured to establish when (date and time) the events occurred.

DISA Rule

SV-87011r1_rule

Vulnerability Number

V-72387

Group Title

SRG-APP-000096-DNS-000007

Rule Version

BIND-9X-001031

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Edit the "named.conf" file.

Add the "print-time" sub statement to the "channel" statement.

Configure the "print-time" sub statement to "yes"

Restart the BIND 9.x process.

Check Contents

For each logging channel that is defined, verify that the "print-time" sub statement is listed.

Inspect the "named.conf" file for the following:

logging {
channel channel_name {
print-time yes;
};
};

If the "print-time" statement is missing, this is a finding.

If the "print-time" statement is not set to "yes", this is a finding.

Vulnerability Number

V-72387

Documentable

False

Rule Version

BIND-9X-001031

Severity Override Guidance

For each logging channel that is defined, verify that the "print-time" sub statement is listed.

Inspect the "named.conf" file for the following:

logging {
channel channel_name {
print-time yes;
};
};

If the "print-time" statement is missing, this is a finding.

If the "print-time" statement is not set to "yes", this is a finding.

Check Content Reference

M

Target Key

3085

Comments