1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
documentation_complete: true
title: Verify User Who Owns /etc/crypttab File
description: '{{{ describe_file_owner(file="/etc/crypttab", owner="root") }}}'
rationale: |-
The ownership of the /etc/crypttab file by the root user is important
because this file hosts encrypted block devices configuration. Protection
of this file is critical for system security. Assigning the ownership to
root ensures exclusive control of the encrypted block devices
configuration.
severity: medium
identifiers:
cce@rhel8: CCE-86365-4
cce@rhel9: CCE-86366-2
cce@rhel10: CCE-89519-3
ocil_clause: '{{{ ocil_clause_file_owner(file="/etc/crypttab", owner="root") }}}'
ocil: |-
{{{ ocil_file_owner(file="/etc/crypttab", owner="root") }}}
fixtext: '{{{ fixtext_file_owner(file="/etc/crypttab", owner="root") }}}'
srg_requirement: '{{{ srg_requirement_file_owner(file="/etc/crypttab", owner="root") }}}'
template:
name: file_owner
vars:
filepath: /etc/crypttab
fileuid: '0'
|
