1.3.2 Ensure filesystem integrity is regularly checked

Information

Periodic checking of the filesystem integrity is needed to detect changes to the filesystem. Periodic file checking allows the system administrator to determine on a regular basis if critical files have been changed in an unauthorized fashion.

Solution

Run the following command: # crontab -u root -e Add the following line to the crontab: 0 5 * * * /usr/bin/aide --check

See Also

https://workbench.cisecurity.org/files/1866

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-7(1), CSCv6|3.5

Plugin: Unix

Control ID: eb4b2b8e116aa33e7436e343899139a8ec2ed1c96c134a3db90c3c33d4a3ed2f