UCF STIG Viewer Logo

The /etc/syslog.conf file must be owned by bin.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4393 GEN005400 SV-38437r1_rule ECLP-1 Medium
Description
If the /etc/syslog.conf file is not owned by bin, unauthorized users could be allowed to view, edit, or delete important system messages handled by the syslog facility.
STIG Date
HP-UX 11.23 Security Technical Implementation Guide 2015-12-02

Details

Check Text ( C-36621r1_chk )
Check /etc/syslog.conf ownership.
# ls -lL /etc/syslog.conf

If either /etc/syslog.conf is not owned by bin, this is a finding.
Fix Text (F-31988r1_fix)
Use the chown command to set the owner to bin.
# chown bin /etc/syslog.conf