Logs containing auditing information should be secured at the directory level.

Information

Only root or web administrators must be able to read and write to log files.

Solution

1. The HTTP server configuration file is located at <IBM Http Installation directory>/logs
2. Ensure that only the administrators and no unauthorized users have permissions on the logs directory.

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12c., CSCv6|3.1

Plugin: Unix

Control ID: ab1fc7f52f94a56730275aa885a7045b19c86b4e2d5571bd157ec129fa055a2d