Upon successful logon the DNS implementation must display to the user the number of unsuccessful logon attempts since the last successful logon.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-33938 | SRG-NET-000049-DNS-000026 | SV-44391r1_rule | Medium |
| Description |
|---|
| As most "users" of a DNS platform are administrators, they need to be very vigilant in maintaining situational awareness of activity that occurs regarding their accounts. Providing them with information regarding the number of unsuccessful login attempts allows them to determine if any unauthorized activity has occurred, provides them an opportunity to notify appropriate security personnel if necessary, and ensure other systems have not been affected. If administrators are not aware of potential attacks against a system, they cannot perform due diligence to ensure access is not granted to unauthorized users. |
| STIG | Date |
|---|---|
| Domain Name System (DNS) Security Requirements Guide | 2012-10-24 |
Details
| Check Text ( C-41947r1_chk ) |
|---|
| Review the DNS system configuration to determine if the number of unsuccessful logon attempts is displayed to the user upon successful login. Request a system administrator to perform a log in to the system with invalid credentials followed by a successful log in for verification of the configuration. If the system is not configured to display the number of unsuccessful attempts, this is a finding. |
| Fix Text (F-37851r1_fix) |
|---|
| Configure the DNS system to display the number of unsuccessful login attempts, since the last successful login. |