Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The system must be checked for extraneous device files at least weekly.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-923 | GEN002260 | SV-923r7_rule | ECSC-1 | Low |
| Description |
|---|
| If an unauthorized device is allowed to exist on the system, there is the possibility the system may perform unauthorized operations. |
| STIG | Date |
|---|---|
| Draft AIX Security Technical Implementation Guide | 2011-08-17 |
Details
| Check Text ( C-464r3_chk ) |
|---|
| Check the system for an automated job, or check with the SA, to determine if the system is checked for extraneous device files on a weekly basis. If no automated or manual process is in place, this is a finding. |
| Fix Text (F-1077r3_fix) |
|---|
| Establish a weekly automated or manual process to create a list of device files on the system and determine if any files have been added, moved, or deleted since the last list was generated. A list of device files can be generated with this command: # find / -type b -o -type c > device-file-list |