Ansible-RHEL7-CIS-Benchmarks icon indicating copy to clipboard operation
Ansible-RHEL7-CIS-Benchmarks copied to clipboard

Published 20 hours ago verified publisher icon HarryHarcourt

Incorrect logfile permissions

Open babbottscott opened this issue 5 years ago • 1 comments

https://github.com/HarryHarcourt/Ansible-RHEL7-CIS-Benchmarks/blob/f5b769109f1e084b4eae149cea2a9453bb182d01/tasks/level-1/4.2.4.yml#L20

This rule turns on the user and group executable bits, as well as group write permissions. Mode 0640 or 0600 would be more appropriate.

babbottscott avatar Aug 18 '20 16:08 babbottscott

Hi Babbottscott Not sure what to make of this, I actually agree with your suggestion but I am following CIS Benchmarks, section 4.2.4, which says set the permissions to: chmod g-wx,o-rwx which is 730 Comments are welcome. Best Ben

HarryHarcourt avatar Sep 08 '20 21:09 HarryHarcourt