The IBM Aspera Shares private/secret cryptographic keys file must be owned by nobody to prevent unauthorized read access.

An XCCDF Rule

Details
Profiles

Description

Private key data is used to prove that the entity presenting a public key certificate is the certificate's rightful owner. Compromise of private key data allows an adversary to impersonate the key holder.

ID: SV-252611r831516_rule
Version: ASP4-SH-060240
Severity: Medium
References: CCI-002165
Updated: 15 days ago

Remediation Templates

Configure the /opt/aspera/shares/u/shares/config/aspera/secret.rb file to be owned by nobody with the following command:

$ sudo chown nobody /opt/aspera/shares/u/shares/config/aspera/secret.rb

The IBM Aspera Shares private/secret cryptographic keys file must be owned by nobody to prevent unauthorized read access.

Description

Remediation Templates

A Manual Procedure