All files and directories contained in user home directories must be group-owned by a group of which the home directorys owner is a member.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-51245 | OSX8-00-01005 | SV-65455r1_rule | Medium |
| Description |
|---|
| All files and directories contained in user home directories must be group-owned by a group of which the home directory's owner is a member. Check the contents of user home directories for files group-owned by a group where the home directory's owner is not a member. |
| STIG | Date |
|---|---|
| Apple OS X 10.8 (Mountain Lion) Workstation STIG | 2015-02-10 |
Details
| Check Text ( C-53593r1_chk ) |
|---|
| To list all of the accounts on the system and their defined home directories, run the following command: sudo dscl . -list /users NFSHomeDirectory For all non-system users, validate the ownership of each user's home directory by running the following command: sudo ls -ld [home directory] If the folder is not group-owned by a group that a user is not a member of, this is a finding. |
| Fix Text (F-56045r1_fix) |
|---|
| To change the group-ownership of the home directory and files, run the following command: sudo chgrp -R [group] /Users/username |