Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-24398 | HMC0035 | SV-30081r1_rule | EBRP-1 EBRU-1 | High |
Description |
---|
This feature will not be activated for any classified systems. Allowing dial-out access from the Hardware Management Console could impact the integrity of the environment by enabling the possible introduction of spyware or other malicious code. |
STIG | Date |
---|---|
IBM HARDWARE MANAGEMENT CONSOLE (HMC) STIG | 2014-04-10 |
Check Text ( C-30381r1_chk ) |
---|
Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems. Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled. If this is a classified system and enable remote service is enabled, then this is a FINDING. |
Fix Text (F-27161r1_fix) |
---|
Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems. Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled. |