Ubuntu 20.04 LTS must restrict privilege elevation to authorized personnel.

STIG ID: UBTU-20-010017  |  SRG: SRG-OS-000373-GPOS-00156 |  Severity: medium |  CCI: CCI-002038,CCI-004895 |  Vulnerability Id: V-274858

Vulnerability Discussion

If the "sudoers" file is not configured correctly, any user defined on the system can initiate privileged actions on the target system.

Check

Verify the operating system restricts privilege elevation to authorized personnel with the following command:

$ sudo grep -iwR 'ALL' /etc/sudoers /etc/sudoers.d/ | grep -v '#'

If either of the following entries are returned, this is a finding:

ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL

Fix

Configure the operating system to restrict privilege elevation to authorized personnel.

Remove the following entries from the /etc/sudoers file or any configuration file under /etc/sudoers.d/:

ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.