UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

NIS maps must be protected through hard-to-guess domain names.


Overview

Finding ID Version Rule ID IA Controls Severity
V-12026 GEN006420 SV-37743r1_rule ECSC-1 Medium
Description
The use of hard-to-guess NIS domain names provides additional protection from unauthorized access to the NIS directory information.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2016-12-16

Details

Check Text ( C-36940r2_chk )
Check the domain name for NIS maps.

Procedure:
# domainname

If the name returned is simple to guess, such as the organization name, building or room name, etc., this is a finding.

If the system does not use NIS, this is not applicable.
Fix Text (F-32205r1_fix)
Change the NIS domainname to a value difficult to guess. Consult vendor documentation for the required procedure.