GEN003080-2 - Files in cron script directories must have mode 0700 or less permissive - '/etc/cron.monthly/*'

Information

To protect the integrity of scheduled system jobs and prevent malicious modification to these jobs, crontab files must be secured.

Solution

Change the mode of the cron scripts.
# chmod 0700 /etc/cron.daily/* /etc/cron.hourly/* /etc/cron.monthly/* /etc/cron.weekly/*

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-6, 800-53|CM-5(6), CAT|II, CCI|CCI-000225, CCI|CCI-001499, Rule-ID|SV-218437r603259_rule, STIG-ID|GEN003080-2, STIG-Legacy|SV-64385, STIG-Legacy|V-29289, Vuln-ID|V-218437

Plugin: Unix

Control ID: 7ea94ba03f614d82b0d3347adf138fd95861aee93a13f3143f7fecdc0eb8c3d0