| VID |
14139 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
The host system's cron.allow configuration file's permission or owner is unsafe. The cron.allow configuration file is a list of accounts that are allowed to use cron. If this file is writable to other users, serious security problems can occur. so normal users need to be prohibited from accessing this file.
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Remove other user's write and read permissions from the file as the following
<Linux>
chmod g-w /etc/cron.allow
chmod o-r /etc/cron.allow
chmod o-w /etc/cron.allow
OR
chmod g-w /usr/lib/cron/cron.allow
chmod o-r /usr/lib/cron/cron.allow
chmod o-w /usr/lib/cron/cron.allow
if the owner of the file is not root, change the owner
chown root /etc/cron.allow
OR
chown root /usr/lib/cron/cron.allow |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
