Detections
Analytics
GEN003190 - The cron log files must not have extended ACLs.
Information
Cron logs contain reports of scheduled system activities and must be protected from unauthorized access or manipulation.Solution
Remove the extended ACL from the cronlog file and disable extended permissions.#acledit /var/adm/cron/log
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: ACCESS CONTROL
References: 800-53|AC-3(4), CAT|II, CCI|CCI-000225, Rule-ID|SV-38783r1_rule, STIG-ID|GEN003190, Vuln-ID|V-22388
Plugin: Unix
Control ID: 24d8a06729ffa0e374e8818fe0bef1a5f4067d5d6d7324b8aca91a949449e251