STIGQter: STIG Summary: VMware vSphere 6.7 Photon OS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021:

The Photon operating system must protect audit tools from unauthorized modification.

DISA Rule

SV-239122r675174_rule

Vulnerability Number

V-239122

Group Title

SRG-OS-000257-GPOS-00098

Rule Version

PHTN-67-000051

Severity

CAT II

CCI(s)

CCI-001494 - The information system protects audit tools from unauthorized modification.
CCI-001495 - The information system protects audit tools from unauthorized deletion.

Weight

Fix Recommendation

At the command line, execute the following command for each file returned:

# chmod 750 <file>

Check Contents

At the command line, execute the following command:

# stat -c "%n permissions are %a" /usr/sbin/auditctl /usr/sbin/auditd /usr/sbin/aureport /usr/sbin/ausearch /usr/sbin/autrace

If any file is more permissive than 750, this is a finding.

Vulnerability Number

V-239122

Documentable

False

Rule Version

PHTN-67-000051

Severity Override Guidance

Check Content Reference

Target Key

5323

The Photon operating system must protect audit tools from unauthorized modification.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments