The operating system must employ automated mechanisms to alert security personnel of any organization-defined inappropriate or unusual activities with security implications.

From Apple OS X 10.8 (Mountain Lion) Workstation STIG

Associated with: CCI-001274

SV-65599r1_rule The operating system must employ automated mechanisms to alert security personnel of any organization-defined inappropriate or unusual activities with security implications.

Vulnerability discussion

Successful incident response and auditing relies on timely, accurate system information and analysis in order to allow the organization to identify and respond to potential incidents in a proficient manner. Automated alarming mechanisms provide the appropriate personnel with the capability to immediately respond and react to events categorized as unusual or having security implications that could be detrimental to system and/or organizational security.

Check content

Ask the SA or IAO if a host-based security system is loaded on the system. The recommended system is the McAfee HBSS. If there is no HBSS installed on the system, this is a finding.

Fix text

If they system does not have the HBSS package installed, contact the HBSS administrator to obtain installer package for the software.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.