Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-240425 | VRAU-SL-000520 | SV-240425r671016_rule | Medium |
Description |
---|
Failure to give ownership of sensitive files or utilities to root provides the designated owner and unauthorized users with the potential to access sensitive information or change the system configuration, which could weaken the system's security posture. |
STIG | Date |
---|---|
VMware vRealize Automation 7.x SLES Security Technical Implementation Guide | 2021-06-24 |
Check Text ( C-43658r671014_chk ) |
---|
Check the owner of the "xinetd" configuration files: # ls -lL /etc/xinetd.conf # ls -laL /etc/xinetd.d This is a finding if any of the above files or directories are not owned by "root" or "bin". |
Fix Text (F-43617r671015_fix) |
---|
Change the owner of the "xinetd" configuration files: # chown root /etc/xinetd.conf /etc/xinetd.d/* |