Installation guide

ManualsBrandsProtogate ManualsComputer equipmentFreeway 3600

Protogate Freeway Requirements Speciﬁcation (SRS) Chapter 4. Qualiﬁcation Provisions

Section Requirement

Name

Qualiﬁcation

Method

Notes

Section 3.8.12 GEN002680 -

Audit Logs

Accessibility

Check Login to the Freeway, su - shell to become a root-level user,

then execute the command ls -la /var/audit/, to verify that

none of the ﬁles in that directory are accessible in any way by any

user other than a root-level user (root or shell). See the Freeway

User’s Guide - DC-900-1333 and Freeway Security Features

User’s Guide (SFUG) - DC-908-3004 documents for details about

ﬁle access permissions.

Section 3.8.13 GEN002700 -

Audit Logs

Permissions

Check Login to the Freeway, su - shell to become a root-level user,

then execute the command more

/etc/security/audit_control ; ls -la /var/audit, to

verify that the auditing capability is conﬁgured as desired, and that

none of the ﬁles in /var/audit/ are accessible in any way by

any user other than a root-level user (root or shell). See the

Freeway User’s Guide - DC-900-1333 and Freeway Security

Features User’s Guide (SFUG) - DC-908-3004 documents for

details about ﬁle access permissions.

Section 3.8.14 GEN002720 -

Audit Failed

File and

Program Access

Attempts

Check Login to the Freeway, su - shell to become a root-level user,

then execute the command more

/etc/security/audit_user, to verify that "fr" or "-fr" is listed

before the second ":" for all users other than the root or shell user.

See the Freeway User’s Guide - DC-900-1333 and Freeway

Security Features User’s Guide (SFUG) - DC-908-3004

documents for details about the Freeway auditing.

Section 3.8.15 GEN002740 -

Audit File and

Program

Deletion

Check Login to the Freeway, su - shell to become a root-level user,

then execute the command more

/etc/security/audit_user, to verify that "fd" or "+fd" and

"-fd" are listed before the second ":" for all users other than the

root or shell user. See the Freeway User’s Guide - DC-900-1333

and Freeway Security Features User’s Guide (SFUG) -

DC-908-3004 documents for details about the Freeway auditing.

Section 3.8.16 GEN002760 -

Audit

Administrative,

Privileged, and

Security

Actions

Check Login to the Freeway, su - shell to become a root-level user,

then execute the command grep flags

/etc/security/audit_control and more

/etc/security/audit_user, to verify that either ’ad’ or ’+ad’

and ’-ad’ are listed on the "ﬂags" line of

/etc/security/audit_control or before the second ":" for

all users other than the root or shell user, in

/etc/security/audit_user. See the Freeway User’s Guide -

DC-900-1333 and Freeway Security Features User’s Guide

(SFUG) - DC-908-3004 documents for details about the Freeway

auditing.

Protogate DC-900-2021A 27