GEN006571 - The file integrity tool must be configured to verify extended attributes.

Information

Extended attributes in file systems are used to contain arbitrary data and file metadata with security implications.

Solution

If using AIDE, edit the configuration and add the 'xattrs' option for all monitored files and directories.

If using a different file integrity tool, configure extended attributes checking per the tool's documentation.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-6a., 800-53|SI-7, CAT|III, CCI|CCI-001297, CCI|CCI-002696, Rule-ID|SV-218669r603259_rule, STIG-ID|GEN006571, STIG-Legacy|SV-63631, STIG-Legacy|V-22508, Vuln-ID|V-218669

Plugin: Unix

Control ID: a971a2092c9cf980a753578b713d09a153c0533bc406f397774f31428d7146cd