Check: GEN003160
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN003160
(in versions v1 r14 through v1 r10)
Title
Cron logging must be implemented. (Cat II impact)
Discussion
Cron logging can be used to trace the successful or unsuccessful execution of cron jobs. It can also be used to spot intrusions into the use of the cron facility by unauthorized and malicious users.
Check Content
# ls -lL /var/adm/cron/log If this file does not exist or is older than the last cron job, this is a finding.
Fix Text
Enable cron logging on the system.
Additional Identifiers
Rule ID: SV-27350r1_rule
Vulnerability ID: V-982
Group Title: GEN003160
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000126 |
The organization determines that the organization-defined subset of the auditable events defined in AU-2 are to be audited within the information system. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AU-2 |
Audit Events |