UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

There must be no world-writable files on the system.


Overview

Finding ID Version Rule ID IA Controls Severity
V-50871 OL6-00-000282 SV-65077r1_rule Medium
Description
Data in world-writable files can be modified by any user on the system. In almost all circumstances, files can be configured using a combination of user and group permissions to support whatever legitimate access is needed without the risk caused by world-writable files.
STIG Date
Oracle Linux 6 Security Technical Implementation Guide 2014-06-12

Details

Check Text ( C-53343r1_chk )
To find world-writable files, run the following command for each local partition [PART]:

# find [PART] -xdev -type f -perm -002

If there is output, this is a finding.
Fix Text (F-55665r1_fix)
It is generally a good idea to remove global (other) write access to a file when it is discovered. However, check with documentation for specific applications before making changes. Also, monitor for recurring world-writable files, as these may be symptoms of a misconfigured application or user account.