← Back to VMware vRealize Automation 7.x SLES Security Technical Implementation Guide

V-240426

CAT II (Medium)

The inetd.conf file, xinetd.conf file, and xinetd.d directory must be group owned by root, bin, sys, or system.

Rule ID

SV-240426r671019_rule

STIG

VMware vRealize Automation 7.x SLES Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-000382

Discussion

Failure to give ownership of sensitive files or utilities to root provides the designated owner and unauthorized users with the potential to access sensitive information or change the system configuration, which could weaken the system's security posture.

Check Content

Check the group-ownership of the "xinetd" configuration files and directories:

# ls -alL /etc/xinetd.conf /etc/xinetd.d

If a file or directory is not group-owned by "root", "bin", "sys", or "system", this is a finding.

Fix Text

Change the group-owner of the "xinetd" configuration files and directories:

# chgrp -R root /etc/xinetd.conf /etc/xinetd.d