STIGQter STIGQter: STIG Summary: IBM z/VM Using CA VM:Secure Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 Apr 2018:

The IBM z/VM SYSTEM CONFIG file must be configured to clear TDISK on IPL.

DISA Rule

SV-93601r1_rule

Vulnerability Number

V-78895

Group Title

SRG-OS-000138-GPOS-00069

Rule Version

IBMZ-VM-000710

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Ensure that the following statement is in the SYSTEM CONFIG file:

FEATURES ENABLE CLEAR_TDISK

Further, before a minidisk is assigned to a user, the minidisk must be formatted to clear it of any residual data.

CMS FORMAT, ICKDSF, or any other low-level formatting program that erases all of the data on the minidisk may be used.

Check Contents

Examine the SYSTEM CONFIG file.

If the “Feature” statement specifies ENABLE CLEAR_TDISK, this is not a finding.

Vulnerability Number

V-78895

Documentable

False

Rule Version

IBMZ-VM-000710

Severity Override Guidance

Examine the SYSTEM CONFIG file.

If the “Feature” statement specifies ENABLE CLEAR_TDISK, this is not a finding.

Check Content Reference

M

Target Key

3211

Comments