STIGQter STIGQter: STIG Summary: Canonical Ubuntu 18.04 LTS Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The Ubuntu operating system must configure the /var/log directory to have mode 0750 or less permissive.

DISA Rule

SV-219191r610963_rule

Vulnerability Number

V-219191

Group Title

SRG-OS-000206-GPOS-00084

Rule Version

UBTU-18-010124

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the Ubuntu operating system to have permissions of 0750 for the /var/log directory by running the following command:

# sudo chmod 0750 /var/log

Check Contents

Verify that the Ubuntu operating system configures the /var/log directory with a mode of 750 or less permissive.

Check the mode of the /var/log directory with the following command:

# stat -c "%n %a" /var/log

/var/log 750

If a value of "750" or less permissive is not returned, this is a finding.

Vulnerability Number

V-219191

Documentable

False

Rule Version

UBTU-18-010124

Severity Override Guidance

Verify that the Ubuntu operating system configures the /var/log directory with a mode of 750 or less permissive.

Check the mode of the /var/log directory with the following command:

# stat -c "%n %a" /var/log

/var/log 750

If a value of "750" or less permissive is not returned, this is a finding.

Check Content Reference

M

Target Key

4055

Comments