Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-835 | GEN004440 | SV-37497r2_rule | ECAR-1 ECAR-2 ECAR-3 | Low |
Description |
---|
If Sendmail is not configured to log at level 9, system logs may not contain the information necessary for tracking unauthorized use of the sendmail service. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2015-06-12 |
Check Text ( C-36154r3_chk ) |
---|
If the "sendmail" package is not installed, this is not applicable. Check if sendmail logging is set to level nine: Procedure: for sendmail: # grep "O L" /etc/mail/sendmail.cf OR # grep LogLevel /etc/mail/sendmail.cf If logging is set to less than nine, this is a finding. for Postfix: This rule is not applicable to postfix which does not use "log levels" in the same fashion as sendmail. |
Fix Text (F-31405r2_fix) |
---|
Edit the sendmail.cf file, locate the "O L" or "LogLevel" entry and change it to 9. |