The /etc/security/audit directory contains the system audit configuration files. Rationale: The /etc/security/audit directory stores the audit configuration files. This directory must have adequate access controls to prevent unauthorized access.
Solution
Ensure correct ownership and permissions are in place for /etc/security/audit: chown -R root:audit /etc/security/audit chmod u=rwx,g=rx,o= /etc/security/audit chmod -R u=rw,g=r,o= /etc/security/audit/* Default Value: N/A