OL08-00-010381 - OL 8 must require users to reauthenticate for privilege escalation and changing roles.

Information

Without reauthentication, users may access resources or perform tasks for which they do not have authorization.

When operating systems provide the capability to escalate a functional capability, it is critical the user reauthenticate.

Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157, SRG-OS-000373-GPOS-00158

Solution

Remove any occurrence of '!authenticate' found in the '/etc/sudoers' file or files in the '/etc/sudoers.d' directory.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_8_V2R1_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-11, CAT|II, CCI|CCI-004895, Rule-ID|SV-248582r987879_rule, STIG-ID|OL08-00-010381, Vuln-ID|V-248582

Plugin: Unix

Control ID: 80484f67223d69e1763b58f645876f0ded7a547518fc6a6602299cecab7adb61