GEN000000-LNX00660 - The /etc/securetty file must have mode 0600 or less permissive.

Information

The securetty file contains the list of terminals permitting direct root logins. It must be protected from unauthorized modification.

Solution

Change the mode of the /etc/securetty file to 0600.

Procedure:
# chmod 0600 /etc/securetty

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-6, 800-53|CM-6b., CAT|II, CCI|CCI-000225, CCI|CCI-000366, Rule-ID|SV-218184r603259_rule, STIG-ID|GEN000000-LNX00660, STIG-Legacy|SV-63071, STIG-Legacy|V-12040, Vuln-ID|V-218184

Plugin: Unix

Control ID: 35d7ca04cd06c66565f2a83d8b5891f9c6fb640f0b6a99a55efba1ba94b94208