UCF STIG Viewer Logo

Manual page files must have mode 0644 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-792 GEN001280 SV-64517r3_rule Low
Description
If manual pages are compromised, misleading information could be inserted, causing actions to compromise the system.
STIG Date
Oracle Linux 5 Security Technical Implementation Guide 2020-02-25

Details

Check Text ( C-52931r3_chk )
Check the mode of the manual page files.

Procedure:

# find /usr/share/man /usr/share/info /usr/share/infopage -type f -perm +022 -exec stat -c %a:%n {} \; |> more

Note: This list only displays manual files with offending permissions.

If any of the manual page files have a mode more permissive than 0644, this is a finding.
Fix Text (F-55113r1_fix)
Change the mode of manual page files to 0644 or less permissive.

Procedure (example):
# chmod 0644 /path/to/manpage