STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 1 hour ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM AIX 7.x Security Technical Implementation Guide

V-245560

CAT II (Medium)

AIX cron and crontab directories must have a mode of 0640 or less permissive.

Rule ID

SV-245560r991589_rule

STIG

IBM AIX 7.x Security Technical Implementation Guide

Version

V3R2

CCIs

CCI-000366

Discussion

Incorrect permissions of the cron or crontab directories could permit unauthorized users the ability to alter cron jobs and run automated jobs as privileged users. Failure to set proper permissions of cron or crontab directories provides unauthorized users with the potential to access sensitive information or change the system configuration which could weaken the system's security posture.

Check Content

Check the mode of the "crontab" directory using command:

# ls -ld /var/spool/cron/crontabs 
drw-r----- 2 bin cron 256 Jan 25 12:33 /var/spool/cron/crontabs

If the file has a mode more permissive than "0640", this is a finding.

Fix Text

Change the owner of the "crontab" directory:
# chmod 640 /var/spool/cron/crontabs