Installation guide
Protogate Freeway Requirements Specification (SRS) Chapter 3. Requirements
3.8.13. GEN002700 - Audit Logs Permissions
Summary System audit logs must have mode 0640 or less permissive.
Notes If a user can write to the audit logs, audit trails can be modified or destroyed and system
intrusion may not be detected. System audit logs are those files generated from the audit
system and do not include activity, error, or other log files created by application software.
3.8.14. GEN002720 - Audit Failed File and Program Access Attempts
Summary The audit system must be configured to audit failed attempts to access files and programs.
Notes If the system is not configured to audit certain activities and write them to an audit log, it is
more difficult to detect and track system compromises and damages incurred during a system
compromise.
3.8.15. GEN002740 - Audit File and Program Deletion
Summary The audit system must be configured to audit file deletions.
Notes If the system is not configured to audit certain activities and write them to an audit log, it is
more difficult to detect and track system compromises and damages incurred during a system
compromise.
3.8.16. GEN002760 - Audit Administrative, Privileged, and Security
Actions
Summary The audit system must be configured to audit all administrative, privileged, and security
actions.
Notes If the system is not configured to audit certain activities and write them to an audit log, it is
more difficult to detect and track system compromises and damages incurred during a system
compromise.
3.8.17. GEN002800 - Audit Login, Logout, and Session Initiation
Summary The audit system must be configured to audit login, logout, and session initiation.
Protogate DC-900-2021A 17