UCF STIG Viewer Logo

The SMTP service log file must be owned by root.


Overview

Finding ID Version Rule ID IA Controls Severity
V-227845 GEN004480 SV-227845r603266_rule Medium
Description
If the SMTP service log file is not owned by root, then unauthorized personnel may modify or delete the file to hide a system compromise.
STIG Date
Solaris 10 X86 Security Technical Implementation Guide 2020-12-04

Details

Check Text ( C-30007r489910_chk )
Locate any mail log files by checking the syslog configuration file.

Procedure:
# more /etc/syslog.conf

Identify any log files configured for the mail service at any severity level, or those configured for all services. Check the ownership of these log files.

Procedure:
# ls -lL

If any mail log file is not owned by root, this is a finding.
Fix Text (F-29995r489911_fix)
Change the ownership of the Sendmail log file.
# chown root