Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-88483 | VROM-SL-000425 | SV-99133r1_rule | Medium |
Description |
---|
File permissions more permissive than 0600 on boot loader configuration files could allow an unauthorized user to view or modify sensitive information pertaining to system boot instructions. |
STIG | Date |
---|---|
VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide | 2018-10-11 |
Check Text ( C-88175r1_chk ) |
---|
Check the /boot/grub/menu.lst file: # stat /boot/grub/menu.lst If "/boot/grub/menu.lst" has a mode more permissive than "0600", this is a finding. |
Fix Text (F-95225r1_fix) |
---|
Change the mode of the "/boot/grub/menu.lst" file to "0600": # chmod 0600 /boot/grub/menu.lst |