IDMS must suppress security-related messages so that no information is returned that can be exploited.

An XCCDF Rule

Details
Profiles

Description

Error messages issued to non-privileged users may have contents that should be considered confidential. IDMS should be configured so that these messages are not issued to those users.

ID: SV-251624r961167_rule
Version: IDMS-DB-000530
Severity: Medium
References: CCI-001312
Updated: 5 days ago

Remediation Templates

Reassemble, relink, and reload (V NC) RHDCOPTF with #DEFOPTF OPT00051 (for messages sent to user) and optional #DEFOPTF OPT00226 (for messages sent to IDMS log).

IDMS must suppress security-related messages so that no information is returned that can be exploited.

Description

Remediation Templates

A Manual Procedure