Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-11980 | GEN001060 | SV-38248r1_rule | ECAR-1 ECAR-2 ECAR-3 | Medium |
Description |
---|
If successful and unsuccessful logins and logouts are not monitored or recorded, access attempts cannot be tracked. Without this logging, it may be impossible to track unauthorized access to the system. |
STIG | Date |
---|---|
HP-UX 11.23 Security Technical Implementation Guide | 2013-03-28 |
Check Text ( C-36291r1_chk ) |
---|
Check the following log files to determine if access to the root account is being logged. Try su - and enter an incorrect password. # more /var/adm/sulog If root account logins are not being logged, this is a finding. |
Fix Text (F-31548r1_fix) |
---|
Troubleshoot the system logging configuration to provide for logging of root account login attempts. |