Description:
The contents of the /etc/motd file are displayed to users after login and function as a
message of the day for authenticated users.
Rationale:
If the /etc/motd file does not have the correct ownership it could be modified by
unauthorized users with incorrect or misleading information.
Audit:
Run the following command and verify: Uid and Gid are both 0/root and Access is 644,
or the file doesn't exist.
# stat -L /etc/motd
Access: (0644/-rw-r--r--) Uid: ( 0/ root) Gid: ( 0/ root)
OR
stat: cannot stat '/etc/motd': No such file or directory
Default Value:
File doesn't exist
Additional Information:
If Message of the day is not needing, this file can be removed.
Profile Applicability: Level 1 - Server Level 1 - Workstation
Description: The contents of the /etc/motd file are displayed to users after login and function as a message of the day for authenticated users.
Rationale: If the /etc/motd file does not have the correct ownership it could be modified by unauthorized users with incorrect or misleading information.
Audit: Run the following command and verify: Uid and Gid are both 0/root and Access is 644, or the file doesn't exist.
Default Value: File doesn't exist
Additional Information: If Message of the day is not needing, this file can be removed.