STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 6 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Riverbed NetIM OS Security Technical Implementation Guide

V-275674

CAT III (Low)

Ubuntu OS must have a crontab script running weekly to off-load audit events of standalone systems.

Rule ID

SV-275674r1148072_rule

STIG

Riverbed NetIM OS Security Technical Implementation Guide

Version

V1R1

CCIs

CCI-001851

Discussion

Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.

Check Content

Verify there is a script that off-loads audit data and the script runs weekly by using the following command: 
 
Note: If the system is not connected to a network, this requirement is not applicable. 
  
     $ ls /etc/cron.weekly 
     <audit_offload_script_name> 
  
Check if the script inside the file off-loads audit logs to external media.  
  
If the script file does not exist or does not off-load audit logs, this is a finding.

Fix Text

Create a script that off-loads audit logs to external media and runs weekly.  
  
The script must be located in the "/etc/cron.weekly" directory.