GEN002360 - Audio devices must be group-owned by audio, root, sys, bin, or system - '/dev/snd/*'

Information

Without privileged group owners, audio devices will be vulnerable to being used as eaves-dropping devices by malicious users or intruders to possibly listen to conversations containing sensitive information.

Solution

Change the group-owner of the audio device.

Procedure:
# chgrp <root, sys, bin, system, audio> <audio device>

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6, CAT|II, CCI|CCI-000225, Group-ID|V-1061, Rule-ID|SV-37577r2_rule, STIG-ID|GEN002360, Vuln-ID|V-1061

Plugin: Unix

Control ID: 2a807f8c5b7f6e4b95e126a33c3db0aa26b77c12e3b81b4de32fd828f6775c83