Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The Configuration auto-loading feature must be disabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-3080 | NET0760 | SV-3080r3_rule | Medium |
| Description |
|---|
| Devices can find their startup configuration either in their own NVRAM or access it over the network via TFTP or Remote Copy (rcp). Loading the image from the network is taking a security risk since the image could be intercepted by an attacker who could corrupt the image resulting in a denial of service. |
| STIG | Date |
|---|---|
| Infrastructure L3 Switch Secure Technical Implementation Guide - Cisco | 2016-07-07 |
Details
| Check Text ( C-3574r7_chk ) |
|---|
| Review the device configuration to determine if the configuration auto-loading feature is disabled. If the configuration auto-loading feature is enabled, this is a finding. |
| Fix Text (F-3105r5_fix) |
|---|
| Disable the configuration auto-loading feature. |