The organization must prohibit remote access from external networks to the test and development environment.

From Test and Development Zone C Security Technical Implementation Guide

Part of ENTD0290 - Remote access to the environment is not prohibited.

Associated with IA controls: ECSC-1

SV-51535r1_rule The organization must prohibit remote access from external networks to the test and development environment.

Vulnerability discussion

Because the test and development environment is a closed network, any network or remote access from outside the designated environment boundaries is prohibited. Allowing remote access from an untrusted external network will leave the network open to attacks and compromised.

Check content

Verify the organization's policies and procedures to prohibit remote access to the test and development environment from external networks. If policies and procedures are not available to prohibit remote access to the test and development environment from external networks, this is a finding.

Fix text

Prohibit remote access to the test and development environment from external networks.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.