Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-216455 | SOL-11.1-080150 | SV-216455r603267_rule | Medium |
Description |
---|
Recovery and reconstitution constitutes executing an operating system contingency plan comprised of activities to restore essential missions and business functions. Transaction rollback and transaction journaling are examples of mechanisms supporting transaction recovery. While this is typically a database function, operating systems could be transactional in nature with respect to file processing. |
STIG | Date |
---|---|
Solaris 11 SPARC Security Technical Implementation Guide | 2021-05-28 |
Check Text ( C-17691r371453_chk ) |
---|
Solaris 11 ZFS copy-on-write model allows filesystem accesses to work according to a transactional model, such that on-disk content is always consistent and cannot be configured to be out of compliance. Determine if any UFS file systems are mounted with the "nologging" option. # mount|grep nologging If any file systems are listed, this is a finding. |
Fix Text (F-17689r371454_fix) |
---|
The root role is required. Solaris 11 ZFS copy-on-write model allows filesystem accesses to work according to a transactional model, such that on-disk content is always consistent and cannot be configured to be out of compliance. If any UFS file systems are mounted with the "nologging" options, remove that option from the /etc/vfstab file. # pfedit /etc/vfstab Locate any file systems listed with the "nologging" option and delete the keyword "nologging". |