The mail system must forward all mail for root to one or more system administrators.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-218100 | RHEL-06-000521 | SV-218100r505923_rule | Medium |
| Description |
|---|
| A number of system services utilize email messages sent to the root user to notify system administrators of active or impending issues. These messages must be forwarded to at least one monitored email address. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2020-09-03 |
Details
| Check Text ( C-19581r377315_chk ) |
|---|
| Find the list of alias maps used by the Postfix mail server: # postconf alias_maps Query the Postfix alias maps for an alias for "root": # postmap -q root hash:/etc/aliases If there are no aliases configured for root that forward to a monitored email address, this is a finding. |
| Fix Text (F-19579r377316_fix) |
|---|
| Set up an alias for root that forwards to a monitored email address: # echo "root: # newaliases |