Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Ubuntu 22.04
System Settings
Configure Syslog
Ensure Proper Configuration of Log Files
Ensure Log Files Are Owned By Appropriate Group
Ensure Log Files Are Owned By Appropriate Group
An XCCDF Rule
Details
Profiles
Prose
Ensure Log Files Are Owned By Appropriate Group
Medium Severity
The group-owner of all log files written by
rsyslog
should be
adm
. These log files are determined by the second part of each Rule line in
/etc/rsyslog.conf
and typically all appear in
/var/log
. For each log file
LOGFILE
referenced in
/etc/rsyslog.conf
, run the following command to inspect the file's group owner:
$ ls -l
LOGFILE
If the owner is not
adm
, run the following command to correct this:
$ sudo chgrp adm
LOGFILE