GEN000000-LNX00640 - The /etc/securetty file must be owned by root.

Information

The securetty file contains the list of terminals permitting direct root logins. It must be protected from unauthorized modification.

Solution

Change the owner of the /etc/securetty file to root.

Procedure:
# chown root /etc/securetty

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-6, 800-53|CM-6b., CAT|II, CCI|CCI-000225, CCI|CCI-000366, Group-ID|V-12039, Rule-ID|SV-37341r1_rule, STIG-ID|GEN000000-LNX00640, Vuln-ID|V-12039

Plugin: Unix

Control ID: 2688c0a3f0f1d17150a163ec5af925466408a7ee23fb7ec02ffb1bf92fc7073c