The ALG must log the event in the audit log when unauthorized network services are detected.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000385-ALG-000137 | SRG-NET-000385-ALG-000137 | SRG-NET-000385-ALG-000137_rule | Medium |
| Description |
|---|
| Unauthorized or unapproved network services lack organizational verification or validation and therefore, may be unreliable or serve as malicious rogues for valid services. The detection of such unauthorized services must be logged. |
| STIG | Date |
|---|---|
| Application Layer Gateway Security Requirements Guide | 2014-06-27 |
Details
| Check Text ( C-SRG-NET-000385-ALG-000137_chk ) |
|---|
| Verify the ALG logs the event in the audit log when unauthorized network services are detected. If the ALG does not log the event in the audit log when unauthorized network services are detected, this is a finding. |
| Fix Text (F-SRG-NET-000385-ALG-000137_fix) |
|---|
| Configure the ALG to log the event in the audit log when unauthorized network services are detected. |