UCF STIG Viewer Logo

All run control scripts must have no extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22353 GEN001590 SV-38342r1_rule ECLP-1 Medium
Description
If the startup files are writable by other users, they could modify the startup files to insert malicious commands into the startup files.
STIG Date
HP-UX 11.31 Security Technical Implementation Guide 2018-09-14

Details

Check Text ( C-36362r2_chk )
Check that run control scripts have no extended ACLs.
# ls -lLa /sbin/init.d/[a-z,A-Z,0-9]*

If the permissions include a '+' the file has an extended ACL, this is a finding.
Fix Text (F-31699r1_fix)
Remove the optional ACL from the file.
# chacl -z [run control script with extended ACL]