Detections
Analytics
PHTN-30-000047 - The Photon operating system audit files and directories must have correct permissions.
Information
Protecting audit information includes identifying and protecting the tools used to view and manipulate log data. Therefore, protecting audit tools is necessary to prevent unauthorized operations on audit information.Solution
At the command line, run the following command:# chown root:root /etc/audit/auditd.conf
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_7-0_Y25M01_STIG.zip
Item Details
Audit Name: DISA STIG VMware vSphere 7.0 Photon OS v1r4
Category: AUDIT AND ACCOUNTABILITY
References: 800-53|AU-9, CAT|II, CCI|CCI-001493, Rule-ID|SV-256522r991557_rule, STIG-ID|PHTN-30-000047, Vuln-ID|V-256522
Plugin: Unix
Control ID: ff408bd5a6eabaef23b828dd4007850f9e778d760171bc7f3669abb0c812a631