Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of OpenEmbedded
System Settings
Configure Syslog
Ensure Proper Configuration of Log Files
Ensure System Log Files Have Correct Permissions
Ensure System Log Files Have Correct Permissions
An XCCDF Rule
Details
Profiles
Prose
Ensure System Log Files Have Correct Permissions
Medium Severity
The file permissions for all log files written by
rsyslog
should be set to 640, or more restrictive. These log files are determined by the second part of each Rule line in
/etc/rsyslog.conf
and typically all appear in
/var/log
. For each log file
LOGFILE
referenced in
/etc/rsyslog.conf
, run the following command to inspect the file's permissions:
$ ls -l
LOGFILE
If the permissions are not 640 or more restrictive, run the following command to correct this:
$ sudo chmod 640
LOGFILE
"