STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system package management tool must verify ownership on all files and directories associated with the audit package.

DISA Rule

SV-209015r603263_rule

Vulnerability Number

V-209015

Group Title

SRG-OS-000257

Rule Version

OL6-00-000279

Severity

CAT II

CCI(s)

CCI-001494 - The information system protects audit tools from unauthorized modification.

Weight

Fix Recommendation

The RPM package management system can restore file ownership of the audit package files and directories. The following command will update audit files with ownership different from what is expected by the RPM database:

# rpm --setugids audit

Check Contents

The following command will list which audit files on the system have ownership different from what is expected by the RPM database:

# rpm -V audit | grep '^.....U'

If there is output, this is a finding.

Vulnerability Number

V-209015

Documentable

False

Rule Version

OL6-00-000279

Severity Override Guidance

Check Content Reference

Target Key

2928

The system package management tool must verify ownership on all files and directories associated with the audit package.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments