The network element must prevent the installation of organization defined critical software programs not signed with a certificate that is recognized and approved by the organization.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-34064	SRG-NET-000121-DNS-NA	SV-44517r1_rule		Medium

Description
Changes to any software components of the network element can have significant effects on the overall security of the network. Verifying the authenticity of the software prior to installation validates the integrity of the patch or upgrade received from a vendor. This ensures the software has not been tampered with and that it has been provided by a trusted vendor. Installation of software is not a function of DNS.

Description

Changes to any software components of the network element can have significant effects on the overall security of the network. Verifying the authenticity of the software prior to installation validates the integrity of the patch or upgrade received from a vendor. This ensures the software has not been tampered with and that it has been provided by a trusted vendor. Installation of software is not a function of DNS.

STIG	Date
Domain Name System (DNS) Security Requirements Guide	2012-10-24

Details

Check Text ( C-42030r1_chk )
This is not a function of DNS.

Fix Text (F-37978r1_fix)
This requirement is NA for DNS. No fix required.