UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The mail system must forward all mail for root to one or more system administrators.


Overview

Finding ID Version Rule ID IA Controls Severity
V-50525 OL6-00-000521 SV-64731r2_rule Medium
Description
A number of system services utilize email messages sent to the root user to notify system administrators of active or impending issues. These messages must be forwarded to at least one monitored email address.
STIG Date
Oracle Linux 6 Security Technical Implementation Guide 2016-12-20

Details

Check Text ( C-53055r2_chk )
Find the list of alias maps used by the Postfix mail server:

# postconf alias_maps

Query the Postfix alias maps for an alias for "root":

# postmap -q root hash:/etc/aliases

If there are no aliases configured for root that forward to a monitored email address, this is a finding.
Fix Text (F-55329r1_fix)
Set up an alias for root that forwards to a monitored email address:

# echo "root: @mail.mil" >> /etc/aliases
# newaliases