Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
All interactive user home directories must be owned by their respective users.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-902 | GEN001500 | SV-38490r1_rule | ECLP-1 | Medium |
| Description |
|---|
| If users do not own their home directories, unauthorized users could access user files. |
| STIG | Date |
|---|---|
| HP-UX 11.31 Security Technical Implementation Guide | 2016-12-20 |
Details
| Check Text ( C-36336r1_chk ) |
|---|
| Check the ownership of each user home directory listed in the /etc/passwd file. Procedure: # ls -lLd OR # ls -lLd `cat /etc/passwd | cut -f 6,6 -d ":"` | more If any user home directory is not owned by the assigned user, this is a finding. |
| Fix Text (F-31591r1_fix) |
|---|
| Change the owner of a user's home directory to its assigned user. Procedure: # chown |