Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-22385 | GEN003050 M6 | SV-38107r1_rule | ECLP-1 | Medium |
Description |
---|
To protect the integrity of scheduled system jobs and prevent malicious modification to these jobs, crontab files must be secured. |
STIG | Date |
---|---|
MAC OSX 10.6 Workstation Security Technical Implementation Guide | 2012-01-30 |
Check Text ( C-37680r1_chk ) |
---|
Open a terminal session and enter the following commands to verify the group ownership of the "crontab" files. ls -lL /usr/sbin/cron ls -lL /usr/lib/cron ls -lL /usr/bin/crontab ls -lL /private/var/at/cron.deny If the group-owner is not wheel or the crontab owner's primary group, this is a finding. |
Fix Text (F-32920r1_fix) |
---|
Open a terminal session and enter the following command to set the group to wheel. chgrp wheel |