The sticky bit must be set on all public directories.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-51285 | OSX8-00-01120 | SV-65495r2_rule | Medium |
| Description |
|---|
| The sticky bit must be set on all public directories. |
| STIG | Date |
|---|---|
| Apple OS X 10.8 (Mountain Lion) Workstation STIG | 2015-02-10 |
Details
| Check Text ( C-53633r2_chk ) |
|---|
| Run the following command to view all world-writable directories that do not have the sticky bit set: sudo find / -type d \( -perm -0002 -a ! -perm -1000 \) If anything is returned, this is a finding. |
| Fix Text (F-56085r1_fix) |
|---|
| Run the following command to set the sticky bit on all world-writable directories: sudo find / -type d \( -perm -0002 -a ! -perm -1000 \) -exec chmod +t {} \; |