The operating system must employ cryptographic mechanisms to recognize changes to information during transmission unless otherwise protected by alternative physical measures.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-220005 | SOL-11.1-060080 | SV-220005r971547_rule | Medium |
| Description |
| Ensuring that transmitted information is not altered during transmission requires the operating system take feasible measures to employ transmission layer security. This requirement applies to communications across internal and external networks. |
| STIG | Date |
| Solaris 11 X86 Security Technical Implementation Guide | 2024-11-25 |
Details
| Check Text (C-21715r947198_chk) |
| All remote sessions must be conducted via encrypted services and ports. Check that SSH is enabled: # svcs svc:/network/ssh STATE STIME FMRI online Nov_03 svc:/network/ssh:default Ask the operator to document all configured external ports and protocols. If any unencrypted connections are used, this is a finding. |
| Fix Text (F-21714r947199_fix) |
| Configure SSH to be enabled. # svcadm enable svc:/network/ssh |