Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-835 | GEN004440 | SV-37497r1_rule | ECAR-1 ECAR-2 ECAR-3 | Low |
Description |
---|
If Sendmail is not configured to log at level 9, system logs may not contain the information necessary for tracking unauthorized use of the sendmail service. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2012-05-25 |
Check Text ( C-36154r1_chk ) |
---|
Check if sendmail logging is set to level nine: Procedure: for sendmail: # grep "O L" /etc/mail/sendmail.cf OR # grep LogLevel /etc/mail/sendmail.cf If logging is set to less than nine, this is a finding. for Postfix: This rule is not applicable to postfix which does not use "log levels" in the same fashion as sendmail. |
Fix Text (F-31405r1_fix) |
---|
Edit the sendmail.conf file, locate the "O L" or "LogLevel" entry and change it to 9. |