The systems boot loader configuration files must be owned by root.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-22586 | GEN008760 | SV-46077r1_rule | Medium |
| Description |
|---|
| The system's boot loader configuration files are critical to the integrity of the system and must be protected. Unauthorized modification of these files resulting from improper ownership could compromise the system's boot loader configuration. |
| STIG | Date |
|---|---|
| SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide | 2018-09-19 |
Details
| Check Text ( C-43336r1_chk ) |
|---|
| Check the ownership of the file. # ls -lLd /etc/zipl.conf If the owner of the file is not root, this is a finding. |
| Fix Text (F-39423r1_fix) |
|---|
| Change the ownership of the file. # chown root /etc/zipl.conf |