Ensure sudo group has only necessary members

An XCCDF Rule

Details
Profiles
Prose

Description

Developers and implementers can increase the assurance in security functions by employing well-defined security policy models; structured, disciplined, and rigorous hardware and software development techniques; and sound system/security engineering principles. Implementation may include isolation of memory space and libraries. The Ubuntu operating system restricts access to security functions through the use of access control mechanisms and by implementing least privilege capabilities.

warning alert: Warning

Due to the risk of removing user rights, automated remediation is not available for this configuration check.

Rationale

Any users assigned to the sudo group would be granted administrator access to the system.

ID: xccdf_org.ssgproject.content_rule_ensure_sudo_group_restricted
Severity: Medium
References: CCI-001084

SRG-OS-000134-GPOS-00068

UBTU-20-010012

SV-238206r653793_rule
Updated: about 1 year ago