UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The operating system must employ cryptographic mechanisms to recognize changes to information during transmission unless otherwise protected by alternative physical measures.


Overview

Finding ID Version Rule ID IA Controls Severity
V-220005 SOL-11.1-060080 SV-220005r971547_rule Medium
Description
Ensuring that transmitted information is not altered during transmission requires the operating system take feasible measures to employ transmission layer security. This requirement applies to communications across internal and external networks.
STIG Date
Solaris 11 X86 Security Technical Implementation Guide 2024-05-30

Details

Check Text ( C-21715r947198_chk )
All remote sessions must be conducted via encrypted services and ports.

Check that SSH is enabled:
# svcs svc:/network/ssh
STATE STIME FMRI
online Nov_03 svc:/network/ssh:default

Ask the operator to document all configured external ports and protocols.

If any unencrypted connections are used, this is a finding.
Fix Text (F-21714r947199_fix)
Configure SSH to be enabled.

# svcadm enable svc:/network/ssh