GEN006571 - The file integrity tool must be configured to verify extended attributes - config

Information

Extended attributes in file systems are used to contain arbitrary data and file metadata with security implications.

Solution

If using AIDE, edit the configuration and add the xattrs option for all monitored files and directories.

If using a different file integrity tool, configure extended attributes checking per the tool's documentation.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_SPARC_V2R4_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-6a., CAT|III, CCI|CCI-002696, Rule-ID|SV-227046r854453_rule, STIG-ID|GEN006571, STIG-Legacy|SV-26860, STIG-Legacy|V-22508, Vuln-ID|V-227046

Plugin: Unix

Control ID: c79e72206412c23e8c8eb43b36eb59de0b0a23a109e1edc36adf423e2396f58b