SRG-OS-000206-GPOS-00084 Controls

STIG ID Version Title Product
ALMA-09-043800 V1R2 AlmaLinux OS 9 must not show boot up messages.
ALMA-09-043910 V1R2 AlmaLinux OS 9 /var/log directory must be group-owned by root.
ALMA-09-044020 V1R2 AlmaLinux OS 9 /var/log/messages file must be group-owned by root.
ALMA-09-044130 V1R2 AlmaLinux OS 9 /var/log/messages file must be owned by root.
ALMA-09-044240 V1R2 AlmaLinux OS 9 /var/log/messages file must have mode 0640 or less permissive.
ALMA-09-044350 V1R2 AlmaLinux OS 9 /var/log directory must be owned by root.
ALMA-09-044460 V1R2 AlmaLinux OS 9 /var/log directory must have mode 0755 or less permissive.
OL08-00-010210 V2R4 The OL 8 "/var/log/messages" file must have mode 0640 or less permissive.
OL08-00-010220 V2R4 The OL 8 "/var/log/messages" file must be owned by root.
OL08-00-010230 V2R4 The OL 8 "/var/log/messages" file must be group-owned by root.
OL08-00-010240 V2R4 The OL 8 "/var/log" directory must have mode 0755 or less permissive.
OL08-00-010250 V2R4 The OL 8 "/var/log" directory must be owned by root.
OL08-00-010260 V2R4 The OL 8 "/var/log" directory must be group-owned by root.
OL08-00-020262 V2R4 The OL 8 lastlog command must have a mode of "0750" or less permissive.
OL08-00-020263 V2R4 The OL 8 lastlog command must be owned by root.
OL08-00-020264 V2R4 The OL 8 lastlog command must be group-owned by root.
OL09-00-002560 V1R1 OL 9 /var/log directory must be group-owned by root.
OL09-00-002561 V1R1 OL 9 /var/log directory must be owned by root.
OL09-00-002562 V1R1 OL 9 /var/log directory must have mode 0755 or less permissive.
OL09-00-002563 V1R1 OL 9 /var/log/messages file must be group-owned by root.
OL09-00-002564 V1R1 OL 9 /var/log/messages file must be owned by root.
OL09-00-002565 V1R1 OL 9 /var/log/messages file must have mode 0640 or less permissive.
RHEL-08-010210 V2R3 The RHEL 8 /var/log/messages file must have mode 0640 or less permissive.
RHEL-08-010220 V2R3 The RHEL 8 /var/log/messages file must be owned by root.
RHEL-08-010230 V2R3 The RHEL 8 /var/log/messages file must be group-owned by root.
RHEL-08-010240 V2R3 The RHEL 8 /var/log directory must have mode 0755 or less permissive.
RHEL-08-010250 V2R3 The RHEL 8 /var/log directory must be owned by root.
RHEL-08-010260 V2R3 The RHEL 8 /var/log directory must be group-owned by root.
RHEL-09-232025 V2R4 RHEL 9 /var/log directory must have mode 0755 or less permissive.
RHEL-09-232030 V2R4 RHEL 9 /var/log/messages file must have mode 0640 or less permissive.
RHEL-09-232170 V2R4 RHEL 9 /var/log directory must be owned by root.
RHEL-09-232175 V2R4 RHEL 9 /var/log directory must be group-owned by root.
RHEL-09-232180 V2R4 RHEL 9 /var/log/messages file must be owned by root.
RHEL-09-232185 V2R4 RHEL 9 /var/log/messages file must be group-owned by root.
SLES-12-010890 V3R2 The SUSE operating system must prevent unauthorized users from accessing system error messages.
SLES-15-010350 V2R4 The SUSE operating system must prevent unauthorized users from accessing system error messages.
UBTU-18-010122 V2R15 The Ubuntu operating system must configure the /var/log directory to be group-owned by syslog.
UBTU-18-010123 V2R15 The Ubuntu operating system must configure the /var/log directory to be owned by root.
UBTU-18-010124 V2R15 The Ubuntu operating system must configure the /var/log directory to have mode 0755 or less permissive.
UBTU-18-010125 V2R15 The Ubuntu operating system must configure the /var/log/syslog file to be group-owned by adm.
UBTU-18-010126 V2R15 The Ubuntu operating system must configure /var/log/syslog file to be owned by syslog.
UBTU-18-010127 V2R15 The Ubuntu operating system must configure /var/log/syslog file with mode 0640 or less permissive.
UBTU-20-010417 V2R1 The Ubuntu operating system must configure the /var/log directory to be group-owned by syslog.
UBTU-20-010418 V2R1 The Ubuntu operating system must configure the /var/log directory to be owned by root.
UBTU-20-010419 V2R1 The Ubuntu operating system must configure the /var/log directory to have mode "0755" or less permissive.
UBTU-20-010420 V2R1 The Ubuntu operating system must configure the /var/log/syslog file to be group-owned by adm.
UBTU-20-010421 V2R1 The Ubuntu operating system must configure /var/log/syslog file to be owned by syslog.
UBTU-20-010422 V2R1 The Ubuntu operating system must configure /var/log/syslog file with mode 0640 or less permissive.
UBTU-22-232025 V2R4 Ubuntu 22.04 LTS must configure the "/var/log" directory to have mode "755" or less permissive.
UBTU-22-232030 V2R4 Ubuntu 22.04 LTS must configure "/var/log/syslog" file with mode "640" or less permissive.
UBTU-22-232080 V2R4 Ubuntu 22.04 LTS must configure the directories used by the system journal to be owned by "root".
UBTU-22-232085 V2R4 Ubuntu 22.04 LTS must configure the directories used by the system journal to be group-owned by "systemd-journal".
UBTU-22-232090 V2R4 Ubuntu 22.04 LTS must configure the files used by the system journal to be owned by "root".
UBTU-22-232095 V2R4 Ubuntu 22.04 LTS must configure the files used by the system journal to be group-owned by "systemd-journal".
UBTU-22-232100 V2R4 Ubuntu 22.04 LTS must be configured so that the "journalctl" command is owned by "root".
UBTU-22-232105 V2R4 Ubuntu 22.04 LTS must be configured so that the "journalctl" command is group-owned by "root".
UBTU-22-232120 V2R4 Ubuntu 22.04 LTS must configure the "/var/log" directory to be owned by "root".
UBTU-22-232125 V2R4 Ubuntu 22.04 LTS must configure the "/var/log" directory to be group-owned by "syslog".
UBTU-22-232130 V2R4 Ubuntu 22.04 LTS must configure "/var/log/syslog" file to be owned by "syslog".
UBTU-22-232135 V2R4 Ubuntu 22.04 LTS must configure the "/var/log/syslog" file to be group-owned by "adm".
UBTU-24-700040 V1R1 Ubuntu 24.04 LTS must be configured so that the "journalctl" command is owned by "root".
UBTU-24-700050 V1R1 Ubuntu 24.04 LTS must be configured so that the "journalctl" command is group-owned by "root".
UBTU-24-700060 V1R1 Ubuntu 24.04 LTS must configure the directories used by the system journal to be group-owned by "systemd-journal".
UBTU-24-700070 V1R1 Ubuntu 24.04 LTS must configure the files used by the system journal to be group-owned by "systemd-journal".
UBTU-24-700080 V1R1 Ubuntu 24.04 LTS must configure the directories used by the system journal to be owned by "root".
UBTU-24-700090 V1R1 Ubuntu 24.04 LTS must configure the files used by the system journal to be owned by "root"
UBTU-24-700100 V1R1 Ubuntu 24.04 LTS must configure the /var/log directory to be group-owned by syslog.
UBTU-24-700110 V1R1 Ubuntu 24.04 LTS must configure the /var/log directory to be owned by root.
UBTU-24-700120 V1R1 Ubuntu 24.04 LTS must configure the /var/log directory to have mode "0755" or less permissive.
UBTU-24-700130 V1R1 Ubuntu 24.04 LTS must configure the /var/log/syslog file to be group-owned by adm.
UBTU-24-700140 V1R1 Ubuntu 24.04 LTS must configure /var/log/syslog file to be owned by syslog.
UBTU-24-700150 V1R1 Ubuntu 24.04 LTS must configure /var/log/syslog file with mode "0640" or less permissive.
WN11-AU-000035 V2R3 The system must be configured to audit Account Management - User Account Management failures.