Details
Permissions on the /etc/nginx directory should enforce the principle of least privilege.
Rationale:
This ensures that only users who need access to configuration files are able to view them, thus preventing unauthorized access. Other users will need to use sudo in order to access these files.
Solution
To set permissions to least privilege on the nginx configuration files, issue these commands:
find /etc/nginx -type d | xargs chmod 750
find /etc/nginx -type f | xargs chmod 640
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.