SV-223551r533198_rule
V-223551
SRG-OS-000355-GPOS-00143
ACF2-OS-000150
CAT II
10
With the assistance of a systems programmer with UID(0) and/or SUPERUSER access, configure the UNIX permission bits and user audit bits on the SNTPD to conform to the specifications below:
/usr/sbin/sntpd 1740 faf
From the ISPF Command Shell enter:
cd /usr/sbin
ls -al
If the following File permission and user Audit Bits are true, this is not a finding.
/usr/sbin/sntpd 1740 faf
The following represents a hierarchy for permission bits from least restrictive to most restrictive:
7 rwx (least restrictive)
6 rw-
3 -wx
2 -w-
5 r-x
4 r--
1 --x
0 --- (most restrictive)
The possible audit bits settings are as follows:
f log for failed access attempts
a log for failed and successful access
- no auditing
V-223551
False
ACF2-OS-000150
From the ISPF Command Shell enter:
cd /usr/sbin
ls -al
If the following File permission and user Audit Bits are true, this is not a finding.
/usr/sbin/sntpd 1740 faf
The following represents a hierarchy for permission bits from least restrictive to most restrictive:
7 rwx (least restrictive)
6 rw-
3 -wx
2 -w-
5 r-x
4 r--
1 --x
0 --- (most restrictive)
The possible audit bits settings are as follows:
f log for failed access attempts
a log for failed and successful access
- no auditing
M
4100