UCF STIG Viewer Logo

System log files must have mode 0640 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-787 GEN001260 SV-787r2_rule ECTP-1 Medium
Description
If the system log files are not protected, unauthorized users could change the logged data, eliminating its forensic value.
STIG Date
AIX 6.1 Security Technical Implementation Guide 2013-09-23

Details

Check Text ( None )
None
Fix Text (F-941r2_fix)
Change the mode of the system log file(s) to 0640 or less permissive.

Procedure:
# chmod 0640 /path/to/system-log-file

NOTE: Do not confuse system log files with audit logs. Any subsystems that require less stringent permissions must be documented.