Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22506 | GEN006565 | SV-38958r1_rule | ECAT-1 | Medium |
Description |
---|
Verification using the system package management tool can be used to determine that system software has not been tampered with. This requirement is not applicable to systems that do not use package management tools. |
STIG | Date |
---|---|
AIX 5.3 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2014-10-03 |
Check Text ( C-38242r1_chk ) |
---|
Check the root crontab for a job invoking the system package management tool to verify the integrity of installed packages. # crontab -l | grep lppchk If no such job exists, this is a finding. |
Fix Text (F-32343r1_fix) |
---|
Add a job to the root crontab invoking the system package management tool to verify the integrity of installed packages. # lppchk -c |