The operating system must enforce organization-defined limitations on the embedding of data types within other data types.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-OS-000013-NA | SRG-OS-000013-NA | SRG-OS-000013-NA_rule | Medium |
| Description |
|---|
| Embedding of data within other data is often used for the clandestine transfer of data. Embedding of data within other data can circumvent protections in place to protect information and systems. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2013-02-05 |
Details
| Check Text ( C-SRG-OS-000013-NA_chk ) |
|---|
| RHEL6 cannot support this requirement without assistance from an external application, policy, or service. This requirement is NA. |
| Fix Text (F-SRG-OS-000013-NA_fix) |
|---|
| This requirement is NA. No fix is required. |