SV-226270r569184_rule
V-226270
SRG-OS-000324-GPOS-00125
WN12-RG-000004
CAT I
10
Maintain permissions at least as restrictive as the defaults listed below for the "winreg" registry key. It is recommended to not change the permissions from the defaults.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg\
The following are the same for each permission listed:
Type - Allow
Inherited from - None
Columns: Principal - Access - Applies to
Administrators - Full Control - This key and subkeys
Backup Operators - Read - This key only
LOCAL SERVICE - Read - This key and subkeys
Run "Regedit".
Navigate to the following registry key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg\
If the key does not exist, this is a finding.
Right-click on "winreg" and select "Permissions…".
Select "Advanced".
If the permissions are not as restrictive as the defaults listed below, this is a finding.
The following are the same for each permission listed:
Type - Allow
Inherited from - None
Columns: Principal - Access - Applies to
Administrators - Full Control - This key and subkeys
Backup Operators - Read - This key only
LOCAL SERVICE - Read - This key and subkeys
V-226270
False
WN12-RG-000004
Run "Regedit".
Navigate to the following registry key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg\
If the key does not exist, this is a finding.
Right-click on "winreg" and select "Permissions…".
Select "Advanced".
If the permissions are not as restrictive as the defaults listed below, this is a finding.
The following are the same for each permission listed:
Type - Allow
Inherited from - None
Columns: Principal - Access - Applies to
Administrators - Full Control - This key and subkeys
Backup Operators - Read - This key only
LOCAL SERVICE - Read - This key and subkeys
M
4217