UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The AIX root accounts home directory (other than /) must have mode 0700.


Overview

Finding ID Version Rule ID IA Controls Severity
V-91753 AIX7-00-001039 SV-101851r1_rule Medium
Description
Users' home directories/folders may contain information of a sensitive nature. Non-privileged users should coordinate any sharing of information with an SA through shared resources.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2020-02-24

Details

Check Text ( C-90907r1_chk )
Check the mode of the root home directory by running the following commands:
# ls -ld `grep "^root" /etc/passwd | awk -F":" '{print $6}'`

The above command should yield the following output:
drwx------ 22 root system 4096 Sep 06 18:00 /root

If the mode of the directory is not equal to "0700", this is a finding.
Fix Text (F-97951r1_fix)
Use the following command to change protections for the root home directory:
# chmod 0700 /root.