Detections
Analytics

1.188 OL08-00-020262

Information

The OL 8 lastlog command must have a mode of "0750" or less permissive.

GROUP ID: V-248705
RULE ID: SV-248705r958566

Unauthorized disclosure of the contents of the /var/log/lastlog file can reveal system data to attackers, thus compromising its confidentiality.

Solution

Configure the mode of the "lastlog" command for OL 8 to "0750" with the following command:

$ sudo chmod 0750 /usr/bin/lastlog

See Also

https://workbench.cisecurity.org/benchmarks/23791

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-11b., CAT|II, CCI|CCI-001314, Rule-ID|SV-248705r958566_rule, STIG-ID|OL08-00-020262, Vuln-ID|V-248705

Plugin: Unix

Control ID: c3e00321c81e52efd350162d230ce3d844c33fb795eb5c8c892b031bfb5f04dd