The DNS implementation must display an approved system use notification message or warning banner before granting access to the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-33934 | SRG-NET-000041-DNS-000022 | SV-44387r1_rule | Medium |
| Description |
|---|
| The DNS implementation is required to display a DoD approved warning banner prior to granting access to the server. The banner must warn any unauthorized user not to proceed. It must also provide clear and unequivocal notice to both authorized and unauthorized personnel that access to the device is subject to monitoring to detect unauthorized usage. Failure to display the required login warning banner prior to log on attempts will limit the ability to prosecute unauthorized access and also presents the potential to give rise to criminal and civil liability for systems administrators and information systems managers. In addition, DoD's ability to monitor the device's usage is limited unless a proper warning banner is displayed. |
| STIG | Date |
|---|---|
| Domain Name System (DNS) Security Requirements Guide | 2012-10-24 |
Details
| Check Text ( C-41943r1_chk ) |
|---|
| Review the initial logon screen of the DNS system to determine if the approved DoD login banner is displayed. If a DoD approved warning banner is not displayed prior to allowing user access to DNS server, this is a finding. |
| Fix Text (F-37847r1_fix) |
|---|
| Configure the DNS system to display the approved DoD Login Banner prior to granting access to the server. |