UBTU-20-010014 - The Ubuntu operating system must require users to reauthenticate for privilege escalation or when changing roles.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Without reauthentication, users may access resources or perform tasks for which they do not have authorization.

When operating systems provide the capability to escalate a functional capability, it is critical the user reauthenticate.

Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157


Remove any occurrence of 'NOPASSWD' or '!authenticate' found in '/etc/sudoers' file or files in the '/etc/sudoers.d' directory.

See Also


Item Details

References: CAT|II, CCI|CCI-002038, Rule-ID|SV-238208r653799_rule, STIG-ID|UBTU-20-010014, Vuln-ID|V-238208

Plugin: Unix

Control ID: 451196a30f6c5c4fa21187ef743204bea5d5cccacf2fedec882c4f7484158f07