1.5.1.4 Ensure permissions on /etc/motd are configured

Information

The contents of the /etc/motd file are displayed to users after login and function as a message of the day for authenticated users.

If the /etc/motd file does not have the correct ownership it could be modified by unauthorized users with incorrect or misleading information.

Solution

Run the following commands to set permissions on /etc/motd :

# chown root:root /etc/motd
# chmod 644 /etc/motd

/etc is stateless on Container-Optimized OS. Therefore, the steps mentioned above needs to be performed after every boot.

See Also

https://workbench.cisecurity.org/benchmarks/12218