Auditing of user access and fax logs must be enabled when fax from the network is enabled.
An XCCDF Rule
Description
Without auditing the originator and destination of a fax cannot be determined. Prosecuting of an individual who maliciously compromises sensitive data via a fax will be hindered without audits. The SA will ensure auditing of user access and fax logging is enabled if fax from the network is enabled.
| Property | Value |
|---|---|
| Responsibility | System Administrator |
- ID
- SV-7028r2_rule
- Version
- MFD07.004
- Severity
- Low
- Updated
Remediation Templates
A Manual Procedure
Configure the MFD to audit faxing. If this is not possible, disable the fax functionality and disconnect the phone line from the MFD.