STIGQter: STIG Summary: IBM DB2 V10.5 LUW Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 25 Oct 2019: STIGQter: STIG Summary: IBM DB2 V10.5 LUW Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 25 Oct 2019:SV-89127r1_rule
V-74453
SRG-APP-000118-DB-000059
DB2X-00-002200
CAT II
10
Remove the write permission from non-instance owner users on the audit directory.
Remove the read permission from non-authorized users from audit directory.
Only the instance owner needs write access to directory and users authorized to archive the audit logs need to have read access to audit directory.
Change the permissions on audit datapath and archivepath directories so that only the instance owner has write access on datapath and users with audit archive privileges have read access on datapath. Only users with SYSADM and SECADM privileges and can extract and archive the audit logs.
Run db2audit command to find the value of datapath where the audit logs are stored.
$db2audit describe
Only the instance owner needs write access to directory and users authorized to archive the audit logs need to have read access to audit directory.
If any user other than the instance owner has write access to audit directory, this is a finding.
If any user other than the users authorized to read audit log files have read access to audit directory, this is a finding.
V-74453
False
DB2X-00-002200
Run db2audit command to find the value of datapath where the audit logs are stored.
$db2audit describe
Only the instance owner needs write access to directory and users authorized to archive the audit logs need to have read access to audit directory.
If any user other than the instance owner has write access to audit directory, this is a finding.
If any user other than the users authorized to read audit log files have read access to audit directory, this is a finding.
M
3161