The Xylok Security Suite configuration file must be protected.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-269582 | XYLK-20-000161 | SV-269582r1053521_rule | CCI-001813 | medium |
| Description | ||||
| Protecting the configuration file is a fundamental aspect of maintaining the security, integrity, and stability of Xylok Security Suite. By implementing robust protection mechanisms, Xylok can safeguard sensitive information, ensure compliance, and enhance operational reliability while minimizing the risks associated with unauthorized access and misconfigurations. | ||||
| STIG | Date | |||
| Xylok Security Suite 20.x Security Technical Implementation Guide | 2024-12-13 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
CM-5(1)
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-001813
1.00
- DISA · 1 · disa_xccdf · related
Details
Check Text (C-269582r1053521_chk)
Check the Xylok configuration file permissions with the following command:
$ ls -l /etc/xylok.conf
If this file has permissions greater than "0644", this is a finding.
Fix Text (F-73516r1053520_fix)
As root, correct permissions for xylok.conf by running:
# chmod 0644 /etc/xylok.conf