CCE-90621-4| Platform: rhel7 | Date: (C)2017-06-29 (M)2022-10-10 |
Ensure Log Files Are Owned By Appropriate User
The owner of all log files written by
'rsyslog' should be root.
These log files are determined by the second part of each Rule line in
'/etc/rsyslog.conf' and typically all appear in '/var/log'.
For each log file
Parameter:
Technical Mechanism:
The log files generated by rsyslog contain valuable information regarding system
configuration, user authentication, and other such information. Log files should be
protected from unauthorized access.
Fix:
No Remediation Info
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : | Attack Vector: |
| Exploit Score: | Attack Complexity: |
| Impact Score: | Privileges Required: |
| Severity: | User Interaction: |
| Vector: | Scope: |
| | Confidentiality: |
| | Integrity: |
| | Availability: |
| | |
References:
