Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-215183 | AIX7-00-001018 | SV-215183r508663_rule | Medium |
Description |
---|
Restricting permissions will protect the files from unauthorized modification. |
STIG | Date |
---|---|
IBM AIX 7.x Security Technical Implementation Guide | 2021-03-10 |
Check Text ( C-16381r294000_chk ) |
---|
Check the ownership of system files, programs, and directories by running the following command: # ls -lLa /etc /bin /usr/bin /usr/lbin /usr/ucb /sbin /usr/sbin If any of the system files, programs, or directories are not owned by a system account, this is a finding. Note: For this check, the system-provided "ipsec" user is considered to be a system account. |
Fix Text (F-16379r294001_fix) |
---|
Change the owner of public directories to "root" or an application account using the following command: # chown root Note: Replace "root" with an application user as necessary. |