1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
documentation_complete: true
title: 'Verify Group Who Owns lastlog Command'
description: |-
{{{ describe_file_group_owner(file="/var/log/lastlog", group="root") }}}
rationale: |-
Unauthorized disclosure of the contents of the /var/log/lastlog file can reveal system data to
attackers, thus compromising its confidentiality.
severity: medium
references:
disa: CCI-001314
nist: SI-11(b),SI-11(c),SI-11.1(iv)
srg: SRG-OS-000206-GPOS-00084
stigid@ol8: OL08-00-020264
ocil_clause: '{{{ ocil_clause_file_group_owner(file="/var/log/lastlog", group="root") }}}'
ocil: |-
{{{ ocil_file_group_owner(file="/var/log/lastlog", group="root") }}}
fixtext: '{{{ fixtext_directory_group_owner(file="/var/log/lastlog", group="root") }}}'
srg_requirement: '{{{ srg_requirement_directory_group_owner(file="/var/log/lastlog", group="root") }}}'
template:
name: file_groupowner
vars:
filepath: /usr/bin/lastlog
gid_or_name: '0'
|
