STIGQter: STIG Summary: Central Log Server Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jul 2020:

For accounts using password authentication, the Central Log Server must be configured to store only cryptographic representations of passwords.

DISA Rule

SV-95997r1_rule

Vulnerability Number

V-81283

Group Title

SRG-APP-000171-AU-002540

Rule Version

SRG-APP-000171-AU-002540

Severity

CAT I

CCI(s)

• CCI-000196 - The information system, for password-based authentication, stores only cryptographically-protected passwords.

Weight

10

Fix Recommendation

Configure the Central Log Server to store only cryptographic representations of passwords.

Check Contents

Examine the configuration.

Verify the Central Log Server is configured to store only cryptographic representations of passwords.

If the Central Log Server is not configured to store only cryptographic representations of passwords, this is a finding.

Vulnerability Number

V-81283

Documentable

False

Rule Version

SRG-APP-000171-AU-002540

Severity Override Guidance

Examine the configuration.

Verify the Central Log Server is configured to store only cryptographic representations of passwords.

If the Central Log Server is not configured to store only cryptographic representations of passwords, this is a finding.

Check Content Reference

M

Target Key

3395

Comments