Documentation - V-251215

V-251215

Redis Enterprise 6.x Security Technical Implementation Guide

CAT II

Title

Redis Enterprise DBMS must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.

Description

<VulnDiscussion>Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

Fix Text (Documentation Requirement)

Use firewalld commands to remove any unnecessary ports from the appropriate zone. To do this, enter the following commands as root. This command will immediately remove a port from the configuration: $ firewall-cmd --zone=<zone> --remove-port=<port>/<protocol> This command will persistently remove a port from a configuration: $ firewall-cmd --permanent --zone=<zone> --remove-port=<port>/<protocol> Repeat the previous commands for any port that is unauthorized for use or is not used.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel