2.3.1 Ensure NGINX directories and files are owned by root

Information

The owner and group of the /etc/nginx directory and its files should be root.

Rationale:

Setting ownership to only those users in the root group and the root user will reduce the likelihood of unauthorized modifications to the nginx configuration files.

Solution

Run the following command to ensure ownership and group ownership is set to root:

chown -R root:root /etc/nginx

Default Value:

The default ownership and group for nginx is root.

See Also

https://workbench.cisecurity.org/benchmarks/17381

Item Details

Category: ACCESS CONTROL, MEDIA PROTECTION

References: 800-53|AC-3, 800-53|AC-5, 800-53|AC-6, 800-53|MP-2, CSCv7|14.6

Plugin: Unix

Control ID: 773877606b099e049fda03b954f2875a234c59d193d421aef0056dbc0816e8d3