The Xylok Security Suite configuration file must be protected.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-269582	XYLK-20-000161	SV-269582r1053521_rule		Medium

Description

Protecting the configuration file is a fundamental aspect of maintaining the security, integrity, and stability of Xylok Security Suite. By implementing robust protection mechanisms, Xylok can safeguard sensitive information, ensure compliance, and enhance operational reliability while minimizing the risks associated with unauthorized access and misconfigurations.

STIG	Date
Xylok Security Suite 20.x Security Technical Implementation Guide	2024-12-13

Details

Check Text (C-73615r1053519_chk)

Check the Xylok configuration file permissions with the following command:

$ ls -l /etc/xylok.conf

If this file has permissions greater than "0644", this is a finding.

Fix Text (F-73516r1053520_fix)

As root, correct permissions for xylok.conf by running:

# chmod 0644 /etc/xylok.conf