V-38663: The system package management tool must verify permissions on all files and directories associated with the audit package.
-----------------------------------------------------------------------------------------------------------------------------------

Permissions on audit binaries and configuration files that are too generous
could allow an unauthorized user to gain privileges that they should not have.
The permissions set by the vendor should be maintained. Any deviations from
this baseline should be investigated.

Details: `V-38663 in STIG Viewer`_.

.. _V-38663 in STIG Viewer: https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/2015-05-26/finding/V-38663

Notes for deployers
~~~~~~~~~~~~~~~~~~~

.. include:: developer-notes/V-38663.rst