UCF STIG Viewer Logo

The cron.allow file must be owned by root, bin, or sys.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4361 GEN003240 SV-27367r1_rule ECLP-1 Medium
Description
If the owner of the cron.allow file is not set to root, bin, or sys, the possibility exists for an unauthorized user to view or to edit sensitive information.
STIG Date
AIX 5.3 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2014-10-03

Details

Check Text ( C-28511r1_chk )
# ls -lL /var/adm/cron/cron.allow

If the cron.allow file is not owned by root, sys, or bin, this is a finding.
Fix Text (F-24612r1_fix)
# chown root /var/adm/cron/cron.allow