STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

AIX time synchronization configuration file must be owned by root.

DISA Rule

SV-215272r508663_rule

Vulnerability Number

V-215272

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

AIX7-00-002081

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Change the ownership of the file to root using command:
# chown root /etc/ntp.conf

Check Contents

Check the ownership of /etc/ntp.conf using command:
# ls -al /etc/ntp.conf

The above command should yield the following output:
-rw-r----- 1 root system 993 Aug 25 18:26 /etc/ntp.conf

If the file is not owned by root, this is a finding.

Vulnerability Number

V-215272

Documentable

False

Rule Version

AIX7-00-002081

Severity Override Guidance

Check the ownership of /etc/ntp.conf using command:
# ls -al /etc/ntp.conf

The above command should yield the following output:
-rw-r----- 1 root system 993 Aug 25 18:26 /etc/ntp.conf

If the file is not owned by root, this is a finding.

Check Content Reference

M

Target Key

4012

Comments