The snmpd.conf file must be owned by root.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-12019 | GEN005360 | SV-38920r1_rule | ECLP-1 | Medium |
| Description |
|---|
| The snmpd.conf file contains authenticators and must be protected from unauthorized access and modification. If the file is not owned by root, it may be subject to access and modification from unauthorized users. |
| STIG | Date |
|---|---|
| AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2018-09-18 |
Details
| Check Text ( C-37060r1_chk ) |
|---|
| Determine the owner of the SNMP configuration file. Consult vendor documentation to determine the location and name of the file. Procedure: # find / -name "snmpd*.conf" # ls -lL If the snmpd.conf file is not owned by root, this is a finding. |
| Fix Text (F-11278r4_fix) |
|---|
| Change the owner of the snmpd.conf file to bin. Procedure: # chown bin |