UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

All skeleton files (typically those in /etc/skel) must have mode 0444 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-788 GEN001800 SV-38459r1_rule ECLP-1 Medium
Description
If the skeleton files are not protected, unauthorized personnel could change user startup parameters and possibly jeopardize user files.
STIG Date
HP-UX 11.31 Security Technical Implementation Guide 2016-12-20

Details

Check Text ( C-36364r1_chk )
Check skeleton files permissions.
# ls -alL /etc/skel

If a skeleton file has a mode more permissive than 0444, this is a finding.
Fix Text (F-31701r1_fix)
Change the mode of skeleton files with incorrect mode.
# chmod 0444