UCF STIG Viewer Logo

The inetd.conf file, xinetd.conf file, and the xinetd.d directory must be group-owned by root, bin, sys, or system.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22423 GEN003730 SV-26650r1_rule ECLP-1 Medium
Description
Failure to give ownership of sensitive files or utilities to system groups may provide unauthorized users with the potential to access sensitive information or change the system configuration which could weaken the system's security posture.
STIG Date
VMware ESX 3 Server 2016-05-13

Details

Check Text ( C-27683r1_chk )
Check the group ownership of the inetd and xinetd configuration files, and xinetd directory.

Procedure:
# ls -alL /etc/inetd.conf /etc/xinetd.conf /etc/xinetd.d

If a file or directory is not group-owned by root, bin, sys, or system, this is a finding.
Fix Text (F-23891r1_fix)
Change the group ownership of the inetd configuration file.
Procedure:
# chgrp root /etc/inetd.conf