Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-15717 | WINER-000004 | SV-29575r2_rule | ECSC-1 | Medium |
Description |
---|
Sending additional error reporting data provides valuable system diagnostic and vulnerability information that would otherwise not be generated nor collected. This setting controls whether additional data in support of error reports can be sent to a local or DOD-wide reporting site. |
STIG | Date |
---|---|
Windows 2008 Member Server Security Technical Implementation Guide | 2016-05-12 |
Check Text ( C-58149r1_chk ) |
---|
If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting\ Value Name: DontSendAdditionalData Type: REG_DWORD Value: 0 |
Fix Text (F-62509r1_fix) |
---|
Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Error Reporting -> "Do not send additional data" to "Disabled". |