UCF STIG Viewer Logo

System audit tool executables must not have extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22373 GEN002718 SV-26020r1_rule ECLP-1 Low
Description
To prevent unauthorized access or manipulation of system audit logs, the tools for manipulating those logs must be protected.
STIG Date
UNIX SRG 2013-03-26

Details

Check Text ( C-29205r1_chk )
Determine if system audit tool executables have extended ACLs. If any do, this is a finding.
Fix Text (F-26226r1_fix)
Remove the extended ACL from the system audit tool executable(s).