Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-12049 | GEN003865 | SV-40811r1_rule | DCPA-1 | Medium |
Description |
---|
Network analysis tools allow for the capture of network traffic visible to the system. |
STIG | Date |
---|---|
SOLARIS 10 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2017-03-03 |
Check Text ( C-8008r2_chk ) |
---|
Determine if any network analysis tools are installed. Procedure: # find / -name ethereal # find / -name wireshark # find / -name tshark # find / -name netcat # find / -name tcpdump # find / -name snoop If any network analysis tools are found, this is a finding. |
Fix Text (F-34664r1_fix) |
---|
Remove the network analysis tool binary from the system. The snoop binary is part of the SUNWrcmdc package, which may also be removed if none of its components are required. Procedure: # rm # pkgrm SUNWrcmdc |