Rule ID
SV-269569r1155155_rule
Version
V1R2
CCIs
The /var/lib/xylok directory is essential for storing various types of data necessary for the operation and functionality of the Xylok Security Suite. It acts as a central repository for application data, ensuring that the suite can function effectively and maintain state and configuration between sessions. Proper management and protection of this directory is crucial to ensure the security and stability of the application.
Check the Xylok lib file permissions with the following command: $ ls -l /var/lib/xylok/data If the "db" directory has permissions greater than "0700", this is a finding. $ ls -l /var/lib/xylok If any file or directory has permissions greater than "0755", this is a finding.
As root, correct permissions for xylok.conf by running:
# chmod -R 0755 /var/lib/xylok
# chmod -R 0700 /var/lib/xylok/data/db