GEN001260 - System log files must have mode 0640 or less permissive - '/var/adm/*'

Information

If the system log files are not protected, unauthorized users could change the logged data, eliminating its forensic value.

Solution

Change the mode of the system log file(s) to 0640 or less permissive.

Procedure:
# chmod 0640 /path/to/system-log-file

Note: Do not confuse system log files with audit logs.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-11b., CAT|II, CCI|CCI-001314, Rule-ID|SV-218269r603259_rule, STIG-ID|GEN001260, STIG-Legacy|SV-64487, STIG-Legacy|V-787, Vuln-ID|V-218269

Plugin: Unix

Control ID: ef90918d43990d5b13b3bbbe4311215f24ed44af0553aebc3f897a8328a033d7