STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system package management tool must verify group-ownership on all files and directories associated with the audit package.

DISA Rule

SV-209016r603263_rule

Vulnerability Number

V-209016

Group Title

SRG-OS-000258

Rule Version

OL6-00-000280

Severity

CAT II

CCI(s)

CCI-001495 - The information system protects audit tools from unauthorized deletion.

Weight

Fix Recommendation

The RPM package management system can restore file group-ownership of the audit package files and directories. The following command will update audit files with group-ownership different from what is expected by the RPM database:

# rpm --setugids audit

Check Contents

The following command will list which audit files on the system have group-ownership different from what is expected by the RPM database:

# rpm -V audit | grep '^......G'

If there is output, this is a finding.

Vulnerability Number

V-209016

Documentable

False

Rule Version

OL6-00-000280

Severity Override Guidance

Check Content Reference

Target Key

2928

The system package management tool must verify group-ownership on all files and directories associated with the audit package.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments