An error occurred:

Check: UBTU-24-300019

Canonical Ubuntu 24.04 LTS STIG: UBTU-24-300019 (in version v1 r2)

Title

Ubuntu 24.04 LTS must restrict privilege elevation to authorized personnel. (Cat II impact)

Discussion

If the "sudoers" file is not configured correctly, any user defined on the system can initiate privileged actions on the target system.

Check Content

Verify the operating system restricts privilege elevation to authorized personnel with the following command: $ sudo grep -iwR 'ALL' /etc/sudoers /etc/sudoers.d/ | grep -v '#' If either of the following entries are returned, this is a finding: ALL ALL=(ALL) ALL ALL ALL=(ALL:ALL) ALL

Fix Text

Configure the operating system to restrict privilege elevation to authorized personnel. Remove the following entries from the /etc/sudoers file or any configuration file under /etc/sudoers.d/: ALL ALL=(ALL) ALL ALL ALL=(ALL:ALL) ALL

Additional Identifiers

Rule ID: SV-274869r1107312_rule

Vulnerability ID: V-274869

Group Title: SRG-OS-000373-GPOS-00156

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002038

The organization requires users to reauthenticate upon organization-defined circumstances or situations requiring reauthentication.
CCI-004895

Permit users to invoke the trusted communications path for communications between the user and the organization-defined security functions, including at a minimum, authentication and re-authentication.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-11

Re-authentication