Hotfixes installed do not match requirement-checkpoint-gaia,secureplatform,ipso
Vendor: checkpoint
OS: gaia,secureplatform,ipso
Description:
Indeni can verify that only certain hotfixes are installed on a specific device and that others shouldn’t be.
Remediation Steps:
Install the required hotfixes and remove the redundant ones.
How does this work?
Using the Check Point command “cpinfo -y -all” we retreive the currently installed hotfixes.
Why is this important?
It is very important to make sure that devices are patched with the latest versions and hotfixes, to prevent downtime and security incidents.
Without Indeni how would you find this?
An administrator could login and manually run the command.
chkp-os-cpinfo-y-all
name: chkp-os-cpinfo-y-all
description: Run "cpinfo -y -all" to get hotfix information.
type: monitoring
monitoring_interval: 60 minutes
requires:
vendor: checkpoint
or:
- os.name: gaia
- os.name: secureplatform
- os.name: ipso
comments:
hotfixes:
why: |
It is very important to make sure that devices are patched with the latest versions and hotfixes, to prevent downtime and security incidents.
how: |
Using the Check Point command "cpinfo -y -all" we retreive the currently installed hotfixes.
can-with-snmp: false
can-with-syslog: false
hotfix-jumbo-take:
why: |
It is very important to make sure that devices are patched with the latest versions and hotfixes, to prevent downtime and security incidents.
how: |
Using the Check Point command "cpinfo -y -all" we retreive the currently installed jumbo hotfixes.
can-with-snmp: false
can-with-syslog: false
steps:
- run:
type: SSH
command: ${nice-path} -n 15 cpinfo -y all
parse:
type: AWK
file: cpinfo_y_all.parser.1.awk
crossvendor_compliance_check_hotfixes_installed
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/crossvendor/compliance/crossvendor_compliance_check_hotfixes_installed.scala