Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-12019 | GEN005360 | SV-40274r2_rule | ECLP-1 | Medium |
Description |
---|
The snmpd.conf files contain authenticators and must be protected from unauthorized access and modification. If the files are not owned by root, they may be subject to access and modification from unauthorized users. |
STIG | Date |
---|---|
SOLARIS 10 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2015-03-31 |
Check Text ( C-39121r1_chk ) |
---|
Determine the owner of the SNMP configuration files. Procedure: # ls -lL /etc/sma/snmp/snmpd.conf /etc/snmp/conf/snmpd.conf /var/sma_snmp/snmpd.conf /usr/sfw/lib/sma_snmp/snmpd.conf If the snmpd.conf files are not owned by root, this is a finding. |
Fix Text (F-35920r1_fix) |
---|
Change the owner of the snmpd.conf file to root. Procedure: # chown root |