CCE-92987-7| Platform: cpe:/o:ubuntu:ubuntu_linux:19.04 | Date: (C)2019-11-07 (M)2023-07-04 |
Enable cron Daemon
The cron daemon is used to execute batch jobs on the system.
Parameter:
[yes/no]
Technical Mechanism:
While there may not be user jobs that need to be run on the system, the system does have maintenance jobs that may include security monitoring that have to run and cron is used to execute them.
Fix:
Edit start lines in /etc/init/cron.conf to match the following:
start on runlevel [2345]
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 9.3 | Attack Vector: NETWORK |
| Exploit Score: 3.9 | Attack Complexity: LOW |
| Impact Score: 4.7 | Privileges Required: NONE |
| Severity: CRITICAL | User Interaction: NONE |
| Vector: AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N | Scope: CHANGED |
| | Confidentiality: HIGH |
| | Integrity: LOW |
| | Availability: NONE |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:55200 |
