UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The /etc/securetty file must be owned by root.


Overview

Finding ID Version Rule ID IA Controls Severity
V-12039 GEN000000-LNX00640 SV-44672r1_rule Medium
Description
The securetty file contains the list of terminals permitting direct root logins. It must be protected from unauthorized modification.
STIG Date
SUSE Linux Enterprise Server v11 for System z 2017-08-25

Details

Check Text ( C-42177r1_chk )
Check /etc/securetty ownership.

Procedure:
# ls –lL /etc/securetty

If /etc/securetty is not owned by root, this is a finding.
Fix Text (F-38126r1_fix)
Change the owner of the /etc/securetty file to root.

Procedure:
# chown root /etc/securetty