The hosts.lpd (or equivalent) file must be owned by root, bin, sys, or lp.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-828 | GEN003920 | SV-37448r1_rule | ECLP-1 | Medium |
| Description |
|---|
| Failure to give ownership of the hosts.lpd file to root, bin, sys, or lp provides the designated owner, and possible unauthorized users, with the potential to modify the hosts.lpd file. Unauthorized modifications could disrupt access to local printers from authorized remote hosts or permit unauthorized remote access to local printers. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2017-03-01 |
Details
| Check Text ( C-36120r1_chk ) |
|---|
| Check the ownership of the print service configuration file. Procedure: # ls -lL /etc/cups/printers.conf; If no print service configuration file is found, this is not applicable. If the owner of the file is not root, this is a finding |
| Fix Text (F-31366r3_fix) |
|---|
| Change the owner of the /etc/cups/printers.conf to root. Procedure: # chown root /etc/cups/printers.conf |