Skip to content

Commit

Permalink
Adjust permissions on file_permissions_var_log_messages to 0600
Browse files Browse the repository at this point in the history
  • Loading branch information
@Mab879
Mab879 committed Dec 17, 2024
1 parent 5a5d244 commit a06c809
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions ...stem/permissions/files/permissions_var_log_dir/file_permissions_var_log_messages/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ documentation_complete: true
title: 'Verify Permissions on /var/log/messages File'

description: |-
{{{ describe_file_permissions(file="/var/log/messages", perms="0640") }}}
{{{ describe_file_permissions(file="/var/log/messages", perms="0600") }}}
rationale: |-
The <tt>/var/log/messages</tt> file contains logs of error messages in
Expand All @@ -22,18 +22,18 @@ references:
stigid@ol8: OL08-00-010210
stigid@rhel8: RHEL-08-010210

ocil_clause: '{{{ ocil_clause_file_permissions(file="/var/log/messages", perms="-rw-r-----") }}}'
ocil_clause: '{{{ ocil_clause_file_permissions(file="/var/log/messages", perms="-rw-------") }}}'

ocil: |-
{{{ ocil_file_permissions(file="/var/log/messages", perms="-rw-r-----") }}}
{{{ ocil_file_permissions(file="/var/log/messages", perms="-rw-------") }}}
template:
name: file_permissions
vars:
filepath: /var/log/messages
filemode: '0640'
filemode: '0600'

fixtext: |-
{{{ fixtext_file_permissions("/var/log/messages", "0640") | indent(4) }}}
srg_requirement: '{{{ srg_requirement_file_permission("/var/log/messages", "0640") }}}'
srg_requirement: '{{{ srg_requirement_file_permission("/var/log/messages", "0600") }}}'

0 comments on commit a06c809

Please sign in to comment.