The Red Hat Enterprise Linux operating system must be configured so that the cron.allow file, if it exists, is group-owned by root.

An XCCDF Rule

Description

If the group owner of the "cron.allow" file is not set to root, sensitive information could be viewed or edited by unauthorized users.

ID: SV-204491r603261_rule
Version: RHEL-07-021120
Severity: Medium
References: CCI-000366
Updated: 15 days ago

Remediation Templates

Set the group owner on the "/etc/cron.allow" file to root with the following command:

# chgrp root /etc/cron.allow