From fd88cd941fe2248bfec43b05e97bed9ff4a0cca3 Mon Sep 17 00:00:00 2001 From: Matthew Burket Date: Tue, 5 Nov 2024 12:00:34 -0600 Subject: [PATCH] Update file_permissions_etc_chrony_keys to 640 --- .../ntp/file_permissions_etc_chrony_keys/rule.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/linux_os/guide/services/ntp/file_permissions_etc_chrony_keys/rule.yml b/linux_os/guide/services/ntp/file_permissions_etc_chrony_keys/rule.yml index 93dec243ada..94d5ed71807 100644 --- a/linux_os/guide/services/ntp/file_permissions_etc_chrony_keys/rule.yml +++ b/linux_os/guide/services/ntp/file_permissions_etc_chrony_keys/rule.yml @@ -2,7 +2,7 @@ documentation_complete: true title: Verify Permissions On /etc/chrony.keys File -description: '{{{ describe_file_permissions(file="/etc/chrony.keys", perms="0644") }}}' +description: '{{{ describe_file_permissions(file="/etc/chrony.keys", perms="0640") }}}' rationale: |- Setting correct permissions on the /etc/chrony.keys file is important @@ -17,17 +17,17 @@ identifiers: cce@rhel9: CCE-86384-5 cce@rhel10: CCE-88155-7 -ocil_clause: '{{{ ocil_clause_file_permissions(file="/etc/chrony.keys", perms="0644") }}}' +ocil_clause: '{{{ ocil_clause_file_permissions(file="/etc/chrony.keys", perms="0640") }}}' ocil: |- - {{{ ocil_file_permissions(file="/etc/chrony.keys", perms="0644") }}} + {{{ ocil_file_permissions(file="/etc/chrony.keys", perms="0640") }}} -fixtext: '{{{ fixtext_file_permissions(file="/etc/chrony.keys", mode="0644") }}}' +fixtext: '{{{ fixtext_file_permissions(file="/etc/chrony.keys", mode="0640") }}}' -srg_requirement: '{{{ srg_requirement_file_permission(file="/etc/chrony.keys", mode="0644") }}}' +srg_requirement: '{{{ srg_requirement_file_permission(file="/etc/chrony.keys", mode="0640") }}}' template: name: file_permissions vars: filepath: /etc/chrony.keys - filemode: '0644' + filemode: '0640'