Navigate

Check: GEN000000-LNX00400

VMware ESX 3 Server: GEN000000-LNX00400 (in version v1 r2)

Title

The /etc/access.conf file must be owned by root. (Cat II impact)

Discussion

The /etc/access.conf file contains entries that restrict access from the system console by authorized System Administrators. If the file were owned by a user other than root, it could compromise the system.

Check Content

Check access configuration ownership: # ls –lL /etc/login.access /etc/security/access.conf /etc/access.conf If any of these files exist and are not owned by root, this is a finding.

Fix Text

Follow the correct configuration parameters for access configuration file. Use the chown command to configure it properly. For example: # chown root /etc/login.access /etc/security/access.conf /etc/access.conf

Additional Identifiers

Rule ID: SV-1025r2_rule

Vulnerability ID: V-1025

Group Title: GEN000000-LNX00400

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000225	The organization employs the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-6	Least Privilege
CM-6	Configuration Settings