UCF STIG Viewer Logo

The system must alert an administrator when low resource conditions are encountered.


Overview

Finding ID Version Rule ID IA Controls Severity
V-222668 APSC-DV-003330 SV-222668r508029_rule Medium
Description
In order to prevent DoS type attacks, applications should be monitored when resource conditions reach a predefined threshold. This could indicate the onset of a DoS attack or could be the precursor to an application outage.
STIG Date
Application Security and Development Security Technical Implementation Guide 2020-09-30

Details

Check Text ( C-24338r493912_chk )
Review the system documentation and interview the application and system administrators.

Examine the system to determine if an automated, continuous on-line monitoring and audit trail creation capability is present with the capability to immediately alert personnel of any unusual or inappropriate activity with potential IA implications, and with a user configurable capability to automatically disable the system if serious IA violations are detected.

If this monitoring capability does not exist, this is a finding.
Fix Text (F-24327r493913_fix)
Implement mechanisms to alert system administrators about a low resource condition.