UCF STIG Viewer Logo

All library files must not have extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22317 GEN001310 SV-38283r1_rule ECLP-1 Medium
Description
Unauthorized access could destroy the integrity of the library files.
STIG Date
HP-UX 11.31 Security Technical Implementation Guide 2018-09-14

Details

Check Text ( C-36316r2_chk )
Verify system libraries have no extended ACLs.
# ls -lLR /usr/lib/* /lib/*
If the permissions include a "+" the file has an extended ACL, this is a finding.
Fix Text (F-31571r1_fix)
Remove the optional ACL from the file.
# chacl -z /usr/lib/* /lib/*