The operating system must employ cryptographic mechanisms to recognize changes to information during transmission unless otherwise protected by alternative physical measures.

Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The operating system must employ cryptographic mechanisms to recognize changes to information during transmission unless otherwise protected by alternative physical measures.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-219977	SOL-11.1-060080	SV-219977r971547_rule		Medium

Description
Ensuring that transmitted information is not altered during transmission requires the operating system take feasible measures to employ transmission layer security. This requirement applies to communications across internal and external networks.

STIG	Date
Solaris 11 SPARC Security Technical Implementation Guide	2024-05-30

Details

Check Text ( C-21687r947204_chk )
All remote sessions must be conducted via encrypted services and ports. Check that SSH is enabled: # svcs svc:/network/ssh STATE STIME FMRI online Nov_03 svc:/network/ssh:default Ask the operator to document all configured external ports and protocols. If any unencrypted connections are used, this is a finding.

Fix Text (F-21686r947205_fix)
Configure SSH to be enabled. # svcadm enable svc:/network/ssh