Describe the bug
Controls for test os-13 from the linux baseline is failing.
Expected behaviorPass results for those tests.
Actual behavior
× os-13: Protect cron directories and files (12 failed)
1513 ✔ File /etc/crontab is expected to be owned by "root"
1514 ✔ File /etc/crontab is expected not to be writable by group
1515 ✔ File /etc/crontab is expected not to be writable by other
1516 × File /etc/crontab is expected not to be readable by group
1517 expected File /etc/crontab not to be readable by group
1518 × File /etc/crontab is expected not to be readable by other
1519 expected File /etc/crontab not to be readable by other
1520 ✔ File /etc/cron.hourly is expected to be owned by "root"
1521 ✔ File /etc/cron.hourly is expected not to be writable by group
1522 ✔ File /etc/cron.hourly is expected not to be writable by other
1523 × File /etc/cron.hourly is expected not to be readable by group
1524 expected File /etc/cron.hourly not to be readable by group
1525 × File /etc/cron.hourly is expected not to be readable by other
1526 expected File /etc/cron.hourly not to be readable by other
1527 ✔ File /etc/cron.daily is expected to be owned by "root"
1528 ✔ File /etc/cron.daily is expected not to be writable by group
1529 ✔ File /etc/cron.daily is expected not to be writable by other
1530 × File /etc/cron.daily is expected not to be readable by group
1531 expected File /etc/cron.daily not to be readable by group
1532 × File /etc/cron.daily is expected not to be readable by other
1533 expected File /etc/cron.daily not to be readable by other
1534 ✔ File /etc/cron.weekly is expected to be owned by "root"
1535 ✔ File /etc/cron.weekly is expected not to be writable by group
1536 ✔ File /etc/cron.weekly is expected not to be writable by other
1537 × File /etc/cron.weekly is expected not to be readable by group
1538 expected File /etc/cron.weekly not to be readable by group
1539 × File /etc/cron.weekly is expected not to be readable by other
1540 expected File /etc/cron.weekly not to be readable by other
1541 ✔ File /etc/cron.monthly is expected to be owned by "root"
1542 ✔ File /etc/cron.monthly is expected not to be writable by group
1543 ✔ File /etc/cron.monthly is expected not to be writable by other
1544 × File /etc/cron.monthly is expected not to be readable by group
1545 expected File /etc/cron.monthly not to be readable by group
1546 × File /etc/cron.monthly is expected not to be readable by other
1547 expected File /etc/cron.monthly not to be readable by other
1548 ✔ File /etc/cron.d is expected to be owned by "root"
1549 ✔ File /etc/cron.d is expected not to be writable by group
1550 ✔ File /etc/cron.d is expected not to be writable by other
1551 × File /etc/cron.d is expected not to be readable by group
1552 expected File /etc/cron.d not to be readable by group
1553 × File /etc/cron.d is expected not to be readable by other
1554 expected File /etc/cron.d not to be readable by other
Example code
bundle exec kitchen test -c 1 --destroy=always ubuntu-16-04
OS / Environment
Ubuntu 16.04
Ubuntu 18.04
Oracle 7
Fedora 27
Fedora 28
Amazon Linux 2
and possibly others
artem-sidorenko
commented
1 year ago
Describe the bug Controls for test os-13 from the linux baseline is failing.
Expected behavior
Passresults for those tests.Actual behavior
Example code
OS / Environment
Ubuntu 16.04 Ubuntu 18.04 Oracle 7 Fedora 27 Fedora 28 Amazon Linux 2 and possibly others
Chef Version
Cookbook Version
Additional context See job logs here: https://travis-ci.org/github/dev-sec/chef-os-hardening/jobs/762137529