CCI-000162 requires audit logs to be protected from unauthorized read access. Default behavior in RHEL is for only root account to be able to read audit logs.
Signed-off-by: Willy Santos <[email protected]> --- rhel6/src/input/auxiliary/srg_support.xml | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/rhel6/src/input/auxiliary/srg_support.xml b/rhel6/src/input/auxiliary/srg_support.xml index e8f1c74..817a9f3 100644 --- a/rhel6/src/input/auxiliary/srg_support.xml +++ b/rhel6/src/input/auxiliary/srg_support.xml @@ -12,7 +12,7 @@ not clearly relate. Red Hat Enterprise Linux meets this requirement by design. <!-- We could include discussion of Common Criteria Testing if so desired here. --> </description> -<ref disa="131,130,132,133,134,159,1694" /> +<ref disa="131,130,132,133,134,159,1694,162" /> </Group> <!-- end met_inherently --> <Group id="unmet_impractical_guidance"> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list [email protected] https://fedorahosted.org/mailman/listinfo/scap-security-guide
