UCF STIG Viewer Logo

The cron log files must not have extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22388 GEN003190 SV-26541r1_rule ECLP-1 ECTP-1 Medium
Description
Cron logs contain reports of scheduled system activities and must be protected from unauthorized access or manipulation.
STIG Date
SOLARIS 9 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2015-10-01

Details

Check Text ( C-27587r1_chk )
Check the permissions of the file.
# ls -lL /var/cron/log
If the permissions include a "+", the file has an extended ACL and this is a finding.
Fix Text (F-23785r1_fix)
Remove the extended ACL from the file.
# getfacl /var/cron/log
Remove each ACE returned.
# setfacl -d [ACE] /var/cron/log