1.6.1.6 Ensure no unconfined daemons exist

Information

Since daemons are launched and descend from the init process, they will inherit the security context label initrc_t. This could cause the unintended consequence of giving the process more permission than it requires.

Solution

Investigate any unconfined daemons found during the audit action. They may need to have an existing security context assigned to them or a policy built for them. Notes - Occasionally certain daemons such as backup or centralized management software may require running unconfined. Any such software should be carefully analyzed and documented before such an exception is made.

See Also

https://workbench.cisecurity.org/files/1863

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(3), CSCv6|14.4

Plugin: Unix

Control ID: 932461915ea6f28debfb84a5b3e444b9e4379b05beb161cd92dc45d5113288c5