STIGQter STIGQter: STIG Summary: VMware ESX 3 Server Version: 1 Release: 2 Benchmark Date: 22 Jul 2016: The /etc/access.conf file must have a privileged group owner.

DISA Rule

SV-1054r2_rule

Vulnerability Number

V-1054

Group Title

GEN000000-LNX00420

Rule Version

GEN000000-LNX00420

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Use the chgrp command to ensure the group owner is root, sys, or bin.
For example:
# chgrp root /etc/login.access /etc/security/access.conf /etc/access.conf

Check Contents

Check access configuration group ownership:

# ls -lL /etc/login.access /etc/security/access.conf /etc/access.conf

If any of these files exist and are have a group-owner that is not a privileged user, this is a finding.

Vulnerability Number

V-1054

Documentable

False

Rule Version

GEN000000-LNX00420

Severity Override Guidance

Check access configuration group ownership:

# ls -lL /etc/login.access /etc/security/access.conf /etc/access.conf

If any of these files exist and are have a group-owner that is not a privileged user, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

1386

Comments