Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Sendmail logging must not be set to less than 9 in the sendmail.cf file.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-835 | GEN004440 | SV-35047r1_rule | ECAR-1 ECAR-2 ECAR-3 | Low |
| Description |
|---|
| If Sendmail is not configured to log at level 9, system logs may not contain the information necessary for tracking unauthorized use of the sendmail service. |
| STIG | Date |
|---|---|
| HP-UX 11.31 Security Technical Implementation Guide | 2017-05-19 |
Details
| Check Text ( C-36564r1_chk ) |
|---|
| The sendmail.cf log level option line will typically appear as follows: O LogLevel=N Check if Sendmail logging is set to level 9 via the following command: # cat /etc/mail/sendmail.cf | tr '\011' ' ' | tr -s ' ' | sed -e 's/^[ \t]*//' | grep -v "^#" | \ grep -i loglevel | tr '\011' ' ' | tr -d ' ' | cut -f 2,2 -d "=" If logging is not set, i.e., line is missing or commented, this is a finding. If logging is set to less than 9, this is a finding. |
| Fix Text (F-31932r1_fix) |
|---|
| Edit the sendmail.cf file, locate the entry (and where necessary uncomment it and/or create it) and modify/set it to 9. |