Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-835 | GEN004440 | SV-45856r2_rule | Low |
Description |
---|
If Sendmail is not configured to log at level 9, system logs may not contain the information necessary for tracking unauthorized use of the sendmail service. |
STIG | Date |
---|---|
SUSE Linux Enterprise Server v11 for System z | 2017-08-25 |
Check Text ( C-43153r2_chk ) |
---|
If the “sendmail” package is not installed, this is not applicable. Check if the sendmail package is installed: # rpm –q sendmail If it is installed, the logging level must be set to level nine: Procedure: for sendmail: # grep "O L" /etc/mail/sendmail.cf OR # grep LogLevel /etc/mail/sendmail.cf If logging is set to less than nine, this is a finding. for Postfix: This rule is not applicable to postfix which does not use "log levels" in the same fashion as sendmail. |
Fix Text (F-39239r1_fix) |
---|
Edit the sendmail.conf file, locate the "O L" or "LogLevel" entry and change it to 9. |