The DNS implementation must support organizational requirements to conduct backups of system-level information contained in the information system per organization defined frequency.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34087 | SRG-NET-000136-DNS-000077 | SV-44540r1_rule | Medium |
| Description |
|---|
| Information system backup is a critical step in maintaining data assurance and availability. Without available back up data to restore a system in the event of a system failure, the system may be rendered useless. If the DNS fails and there is no backup of the system information, a denial of service condition is possible for all who utilize this critical network component. |
| STIG | Date |
|---|---|
| Domain Name System (DNS) Security Requirements Guide | 2012-10-24 |
Details
| Check Text ( C-42046r1_chk ) |
|---|
| Review the DNS configuration to determine whether the DNS is configured to back up system level data and is capable of backing data up according to a defined frequency. If the DNS is not backing up system level data according to a defined frequency, this is a finding. |
| Fix Text (F-37997r1_fix) |
|---|
| Configure the DNS implementation to back up system level data according to an organizationally defined frequency. |