NIS maps must be protected through hard-to-guess domain names.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-12026 | GEN006420 | SV-37743r1_rule | ECSC-1 | Medium |
| Description |
|---|
| The use of hard-to-guess NIS domain names provides additional protection from unauthorized access to the NIS directory information. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2017-03-01 |
Details
| Check Text ( C-36940r2_chk ) |
|---|
| Check the domain name for NIS maps. Procedure: # domainname If the name returned is simple to guess, such as the organization name, building or room name, etc., this is a finding. If the system does not use NIS, this is not applicable. |
| Fix Text (F-32205r1_fix) |
|---|
| Change the NIS domainname to a value difficult to guess. Consult vendor documentation for the required procedure. |