STIGQter: STIG Summary: APACHE 2.2 Site for UNIX Security Technical Implementation Guide Version: 1 Release: 11 Benchmark Date: 25 Jan 2019: STIGQter: STIG Summary: APACHE 2.2 Site for UNIX Security Technical Implementation Guide Version: 1 Release: 11 Benchmark Date: 25 Jan 2019:SV-36643r1_rule
V-13689
WG255
WG255 A22
CAT II
10
To ensure the integrity of the data that is being captured in the log files, ensure that only the members of the Auditors group, Administrators, and the user assigned to run the web server software is granted permissions to read the log files.
Look for the presence of log files at:
/usr/local/apache/logs/access_log
To ensure the correct location of the log files, examine the "ServerRoot" directive in the htttpd.conf file and then navigate to that directory where you will find a subdirectory for the logs.
Determine permissions for log files, from the command line: cd to the directory where the log files are located and enter the command:
ls –al *log and note the owner and group permissions on these files. Only the Auditors, Web Managers, Administrators, and the account that runs the web server should have permissions to the files.
If any users other than those authorized have read access to the log files, this is a finding.
V-13689
False
WG255 A22
Look for the presence of log files at:
/usr/local/apache/logs/access_log
To ensure the correct location of the log files, examine the "ServerRoot" directive in the htttpd.conf file and then navigate to that directory where you will find a subdirectory for the logs.
Determine permissions for log files, from the command line: cd to the directory where the log files are located and enter the command:
ls –al *log and note the owner and group permissions on these files. Only the Auditors, Web Managers, Administrators, and the account that runs the web server should have permissions to the files.
If any users other than those authorized have read access to the log files, this is a finding.
M
Web Administrator
161