DISA STIGS Viewer

Finding ID	Version	Rule ID	IA Controls	Severity
V-270947	DRAG-OT-000520	SV-270947r1058031_rule		High

Description

If Dragos Platform were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust change management process. This requirement applies to applications with software libraries that are accessible and configurable, as in the case of interpreted languages. Software libraries also include privileged programs which execute with escalated privileges. Only qualified and authorized individuals must be allowed to obtain access to information system components for purposes of initiating changes, including upgrades and modifications. Satisfies: SRG-APP-000133, SRG-APP-000206, SRG-APP-000246, SRG-APP-000340, SRG-APP-000342, SRG-APP-000384

STIG	Date
Dragos Platform 2.x Security Technical Implementation Guide	2024-12-23

Check Text (C-74990r1058030_chk)

Verify shell environment: Log in to the Dragos Platform CLI. Execute the following command: run shell If the option "run shell" executes successfully and places the terminal session into a shell environment, this is a finding. Note: A shell environment will be noticeable because the terminal line will be in the format "user@dragos:~$" compared to dragoscmd, which would be "dragos>". If shell is properly uninstalled, the return will be "Error: No such command 'shell'."

Fix Text (F-74891r1058031_fix)

Uninstall shell environment: Log in to the Dragos Platform CLI. Execute the following command: run ushell Once this is done, users cannot initiate communications outside low threshold (nonuser configurable) ICMP packets. Nonsigned installation packages cannot be added to the Dragos Platform. This command removes the shell from the Platform; it cannot be reinstalled without installing Dragos Platform from baseline images.