STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The /etc/security/audit_user file must have mode 0640 or less permissive.

DISA Rule

SV-226409r603265_rule

Vulnerability Number

V-226409

Group Title

SRG-OS-000057

Rule Version

GEN000000-SOL00100

Severity

CAT II

CCI(s)

CCI-000162 - The information system protects audit information from unauthorized access.

Weight

Fix Recommendation

Change the mode of the audit_user file to 0640.
# chmod 0640 /etc/security/audit_user

Check Contents

Check /etc/security/audit_user permissions.

# ls -lL /etc/security/audit_user

If /etc/security/audit_user is more permissive than 0640, this is a finding.

Vulnerability Number

V-226409

Documentable

False

Rule Version

GEN000000-SOL00100

Severity Override Guidance

Check /etc/security/audit_user permissions.

# ls -lL /etc/security/audit_user

If /etc/security/audit_user is more permissive than 0640, this is a finding.

Check Content Reference

Target Key

4060

The /etc/security/audit_user file must have mode 0640 or less permissive.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments