Verify Group Who Owns /etc/ipsec.secrets File
An XCCDF Rule
Description
To properly set the group owner of/etc/ipsec.secrets, run the command: $ sudo chgrp root /etc/ipsec.secrets
Rationale
The ownership of the /etc/ipsec.secrets file by the root group is important because this file hosts Libreswan configuration. Protection of this file is critical for system security. Assigning the ownership to root ensures exclusive control of the Libreswan configuration.
- ID
- xccdf_org.ssgproject.content_rule_file_groupowner_etc_ipsec_secrets
- Severity
- Medium
- References
- Updated