Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The at.deny file must be owned by root, bin, or sys.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-4368 | GEN003480 M6 | SV-38024r1_rule | ECLP-1 | Medium |
| Description |
|---|
| If the owner of the at.deny file is not set to root, bin, or sys, unauthorized users could be allowed to view or edit sensitive information contained within the file. |
| STIG | Date |
|---|---|
| MAC OSX 10.6 Workstation Security Technical Implementation Guide | 2012-01-30 |
Details
| Check Text ( C-37594r1_chk ) |
|---|
| Open a terminal session and enter the following command to verify the owner. ls -lL /var/at/at.deny If the at.deny file is not owned by root, sys, or bin, this is a finding. |
| Fix Text (F-32836r1_fix) |
|---|
| Open a terminal session and enter the following command to set the owner of the at.deny file. chown root /var/at/at.deny |