| VID |
14140 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
The host system's cron.deny configuration file's permission or owner is unsafe. The cron.deny configuration file is a list of accounts that are denied to use cron.
If this file is writable to other users, serious security problems can occur. So normal users need to be prohibited from accessing this file.
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Remove other user's write and read permissions from the file as the following
<Linux>
chmod g-w /etc/cron.deny
chmod o-r /etc/cron.deny
chmod o-w /etc/cron.deny
OR
chmod g-w /usr/lib/cron/cron.deny
chmod o-r /usr/lib/cron/cron.deny
chmod o-w /usr/lib/cron/cron.deny
if the owner of the file is not root, change the owner
chown root /etc/cron.deny
OR
chown root /usr/lib/cron/cron.deny |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
