The operating system must define default permissions for all authenticated users in such a way that the user can only read and modify their own files.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-203781 | SRG-OS-000480-GPOS-00228 | SV-203781r388482_rule | Medium |
| Description |
|---|
| Setting the most restrictive default permissions ensures that when new accounts are created they do not have unnecessary access. |
| STIG | Date |
|---|---|
| General Purpose Operating System Security Requirements Guide | 2022-11-21 |
Details
| Check Text ( C-3906r375734_chk ) |
|---|
| Verify the operating system defines default permissions for all authenticated users in such a way that the user can only read and modify their own files. If it does not, this is a finding. |
| Fix Text (F-3906r375735_fix) |
|---|
| Configure the operating system to define default permissions for all authenticated users in such a way that the user can only read and modify their own files. |