Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The system boot loader configuration file(s) must have mode 0600 or less permissive.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| RHEL-06-000067 | RHEL-06-000067 | RHEL-06-000067_rule | Medium |
| Description |
|---|
| Proper permissions ensure that only the root user can modify important boot parameters. |
| STIG | Date |
|---|---|
| Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2013-02-05 |
Details
| Check Text ( C-RHEL-06-000067_chk ) |
|---|
| To check the permissions of "/etc/grub.conf", run the command: $ ls -l /etc/grub.conf If properly configured, the output should indicate the following permissions: "-rw-------" If it does not, this is a finding. |
| Fix Text (F-RHEL-06-000067_fix) |
|---|
| File permissions for "/etc/grub.conf" should be set to 600, which is the default. To properly set the permissions of "/etc/grub.conf", run the command: # chmod 600 /etc/grub.conf |