The IBM Aspera Console private/secret cryptographic keys file must be owned by root to prevent unauthorized read access.

An XCCDF Rule

Details
Profiles

Description

Private key data is used to prove that the entity presenting a public key certificate is the certificate's rightful owner. Compromise of private key data allows an adversary to impersonate the key holder.

ID: SV-252572r831497_rule
Version: ASP4-CS-040250
Severity: Medium
References: CCI-002165
Updated: 24 days ago

Remediation Templates

Configure the /opt/aspera/console/config/secret.yml file to be owned by root with the following command:

$ sudo chown root /opt/aspera/console/config/secret.yml

The IBM Aspera Console private/secret cryptographic keys file must be owned by root to prevent unauthorized read access.

Description

Remediation Templates

A Manual Procedure