STIGQter STIGQter: STIG Summary: Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 10 Mar 2021:

The Ubuntu operating system must configure the /var/log directory to have mode 0750 or less permissive.

DISA Rule

SV-238340r654195_rule

Vulnerability Number

V-238340

Group Title

SRG-OS-000206-GPOS-00084

Rule Version

UBTU-20-010419

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the Ubuntu operating system to have permissions of 0750 for the "/var/log" directory by running the following command:

$ sudo chmod 0750 /var/log

Check Contents

Verify that the Ubuntu operating system configures the "/var/log" directory with a mode of 750 or less permissive with the following command:

$ stat -c "%n %a" /var/log

/var/log 750

If a value of "750" or less permissive is not returned, this is a finding.

Vulnerability Number

V-238340

Documentable

False

Rule Version

UBTU-20-010419

Severity Override Guidance

Verify that the Ubuntu operating system configures the "/var/log" directory with a mode of 750 or less permissive with the following command:

$ stat -c "%n %a" /var/log

/var/log 750

If a value of "750" or less permissive is not returned, this is a finding.

Check Content Reference

M

Target Key

5318

Comments