{"description": "\nThe <code>logrotate</code> timer can be enabled with the following command:\n<pre>$ sudo systemctl enable logrotate.timer</pre>", "rationale": "Log files that are not properly rotated run the risk of growing so large\nthat they fill up the /var/log partition. Valuable logging information could be lost\nif the /var/log partition becomes full.", "severity": "medium", "references": {"cis-csc": ["1", "14", "15", "16", "3", "5", "6"], "cobit5": ["APO11.04", "BAI03.05", "DSS05.04", "DSS05.07", "MEA02.01"], "isa-62443-2009": ["4.3.3.3.9", "4.3.3.5.8", "4.3.4.4.7", "4.4.2.1", "4.4.2.2", "4.4.2.4"], "isa-62443-2013": ["SR 2.10", "SR 2.11", "SR 2.12", "SR 2.8", "SR 2.9"], "iso27001-2013": ["A.12.4.1", "A.12.4.2", "A.12.4.3", "A.12.4.4", "A.12.7.1"], "nist": ["CM-6(a)"], "nist-csf": ["PR.PT-1"], "pcidss": ["Req-10.7"], "anssi": ["R71"], "pcidss4": ["10.5.1", "10.5"]}, "control_references": {"anssi": ["R71"], "pcidss4": ["10.5.1", "10.5"]}, "components": [], "identifiers": {}, "ocil_clause": "logrotate timer is not enabled", "ocil": " Run the following command to determine the current status of the <code>logrotate</code> timer: <pre>$ sudo systemctl is-active logrotate.timer</pre> If the timer is running, it should return the following: <pre>active</pre>", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": "package[logrotate]", "platforms": ["package[logrotate]"], "sce_metadata": {"check-import": "stdout", "platform": ["multi_platform_all"], "environment": "any", "filename": "timer_logrotate_enabled.sh", "relative_path": "ubuntu2204/checks/sce/timer_logrotate_enabled.sh"}, "inherited_platforms": ["system_with_kernel"], "cpe_platform_names": ["package_logrotate"], "inherited_cpe_platform_names": ["system_with_kernel"], "bash_conditional": null, "fixes": {}, "title": "Enable logrotate Timer", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/logging/log_rotation/timer_logrotate_enabled/rule.yml", "template": {"name": "timer_enabled", "vars": {"timername": "logrotate", "packagename": "logrotate"}, "backends": {}}}