An XCCDF Group - A logical subset of the XCCDF Benchmark
/etc/permissions.local
chkstat
/var/log/messages
$ sudo chmod 0640 /var/log/messages
# grep -i messages /etc/permissions.local /var/log/messages root:root 640
grep "^/usr/sbin/au" /etc/permissions.local /usr/sbin/audispd root:root 0750 /usr/sbin/auditctl root:root 0750 /usr/sbin/auditd root:root 0750 /usr/sbin/ausearch root:root 0755 /usr/sbin/aureport root:root 0755 /usr/sbin/autrace root:root 0750 /usr/sbin/augenrules root:root 0750
# grep -i audit /etc/permissions.local /var/log/audit/ root:root 600 /var/log/audit/audit.log root:root 600 /etc/audit/audit.rules root:root 640 /etc/audit/rules.d/audit.rules root:root 640
# sudo chkstat --warn --system
# sudo chkstat --set --system