STIGQter STIGQter: STIG Summary: Oracle Linux 5 Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 26 Oct 2018: The snmpd.conf file must have mode 0600 or less permissive.

DISA Rule

SV-63425r1_rule

Vulnerability Number

V-994

Group Title

GEN005320

Rule Version

GEN005320

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Change the mode of the SNMP daemon configuration file to 0600.

Procedure:
# chmod 0600 <snmpd.conf>

Check Contents

Check the mode of the SNMP daemon configuration file.

Procedure:
Examine the default install location /etc/snmp/snmpd.conf
or:
# find / -name snmpd.conf

# ls -lL <snmpd.conf file>

If the snmpd.conf file has a mode more permissive than 0600, this is a finding.

Vulnerability Number

V-994

Documentable

False

Rule Version

GEN005320

Severity Override Guidance

Check the mode of the SNMP daemon configuration file.

Procedure:
Examine the default install location /etc/snmp/snmpd.conf
or:
# find / -name snmpd.conf

# ls -lL <snmpd.conf file>

If the snmpd.conf file has a mode more permissive than 0600, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

2207

Comments