| VID |
14112 |
| Severity |
10 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
If the audit setting is not configured or the audit setting level is lower than the security policy, it is difficult to identify the cause of the security incident and to confirm the various infringement cases, and it can not be used as sufficient evidence for the legal response.
* Affected platforms:
UNIX, Linux |
| Recommendation |
You can set up the audit log as follows.
1. # vi /etc/(r)syslog.conf
2. Correction or new insertion such as crit, alert, emerg, warn by severity
3. Restart the (R)SYSLOG daemon after configuration |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
