/etc/rc.d/rc.local permissions does not require group write

Description

Going through files we manage that pop up in SCAP/security scans. We control /etc/rc.d/rc.local as root:root 770; which is not necessarily over permissive since no one should be part of the root group; however, group write permissions are not necessary on the file; just execute permissions.

This should be changed to 750 so we're not really adding any permissions to the standard (644 from the RPM) just removing the `other` perms.

Acceptance Criteria

None

Labels

Epic Link

Story Points

2

Components

Sprint

None

Affects versions

Priority

Low
Configure