Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22549 | GEN007850 | SV-38963r1_rule | ECSC-1 | Medium |
Description |
---|
Dynamic DNS updates transmit unencrypted information about a system including its name and address and should not be used unless needed. |
STIG | Date |
---|---|
AIX 5.3 Security Technical Implementation Guide | 2013-03-26 |
Check Text ( C-37916r1_chk ) |
---|
Determine if the system's DHCP client is configured to send dynamic DNS updates. #grep "^updateDNS" /etc/dhcpc.opt /etc/dhcpcd.ini If any lines are returned, this is a finding. |
Fix Text (F-32346r1_fix) |
---|
Configure the system's DHCP client to not send dynamic DNS updates. Remove / comment updateDNS lines from the /etc/dhcpcd.ini and /etc/dhcpc.opt files. |