UCF STIG Viewer Logo

Crontabs must be owned by root or the crontab creator.


Overview

Finding ID Version Rule ID IA Controls Severity
V-11994 GEN003040 SV-38250r1_rule DCSL-1 Medium
Description
To protect the integrity of scheduled system jobs and prevent malicious modification to these jobs, crontab files must be secured.
STIG Date
HP-UX 11.23 Security Technical Implementation Guide 2015-12-02

Details

Check Text ( C-36480r1_chk )
List all crontabs on the system.
# ls -lL /var/spool/cron/crontabs/*

If any crontab file is not owned by root or the creating user, this is a finding.
Fix Text (F-31827r1_fix)
Change the crontab file owner to root or the crontab creator.
# chown root