4.7.2.16 /var/tmp/dpid2.log

Information

The /var/tmp/dpid2.log is the logfile used by dpid2 daemon, and contains SNMP information.

Rationale:

The /var/tmp/dpid2.log logfile is used by the dpid2 daemon and can contain sensitive SNMP information. This file must be secured from unauthorized access and modifications.

Solution

Remove world read and write from /var/tmp/dpid2.log:

chmod o-rw /var/tmp/dpid2.log

Default Value:

644

See Also

https://workbench.cisecurity.org/benchmarks/13069

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

References: 800-53|CM-2, 800-53|CM-6, 800-53|CM-7, 800-53|CM-7(1), 800-53|CM-9, 800-53|SA-3, 800-53|SA-8, 800-53|SA-10, CSCv7|5.1

Plugin: Unix

Control ID: bda1538173b8b009f35078b28dd28b226ea6d7c1a7044a0679c7587d8d6bcf2c