UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The system must not use UDP for NIS/NIS+.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4399 GEN006380 SV-4399r2_rule ECSC-1 High
Description
Implementing NIS or NIS+ under UDP may make the system more susceptible to a Denial of Service attack and does not provide the same quality of service as TCP.
STIG Date
SOLARIS 10 SPARC SECURITY TECHNICAL IMPLEMENTATION GUIDE 2016-06-22

Details

Check Text ( C-8277r2_chk )
If the system does not use NIS or NIS+, this is not applicable.

Check if NIS or NIS+ is implemented using UDP.

Procedure:
# rpcinfo -p | grep yp | grep udp

If NIS or NIS+ is implemented using UDP, this is a finding.
Fix Text (F-4310r2_fix)
Configure the system to not use UDP for NIS and NIS+. Consult vendor documentation for the required procedure.