STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 6 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Solaris 11 SPARC Security Technical Implementation Guide

V-216315

CAT II (Medium)

The graphical login service provides the capability of logging into the system using an X-Windows type interface from the console. If graphical login access for the console is required, the service must be in local-only mode.

Rule ID

SV-216315r959010_rule

STIG

Solaris 11 SPARC Security Technical Implementation Guide

Version

V3R5

CCIs

CCI-000366

Discussion

Externally accessible graphical desktop software may open the system to remote attacks.

Check Content

Determine if the X11 server system is providing remote services on the network.

# svcprop -p options/tcp_listen svc:/application/x11/x11-server

If the output of the command is "true" and network access to graphical user login is not required, this is a finding.

Fix Text

The System Administrator profile is required:

Configure the X11 server for local system only graphics access.

# pfexec svccfg -s svc:/application/x11/x11-server setprop options/tcp_listen=false