The Photon operating system must reveal error messages only to authorized users.

An XCCDF Rule

Description

<VulnDiscussion>Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the operating system or platform. Additionally, Personally Identifiable Information (PII) and operational information must not be revealed through error messages to unauthorized personnel or their designated representatives.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-258832r958566_rule
Severity: Medium
References: CCI-001314
Updated: 17 days ago

Navigate to and open:

/etc/rsyslog.conf

Add or update the following line:
$umask 0037

At the command line, run the following command:

# systemctl restart rsyslog.service

The Photon operating system must reveal error messages only to authorized users.

Description

Remediation - Manual Procedure