Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-50673 | OL6-00-000343 | SV-64879r1_rule | Low |
Description |
---|
The umask value influences the permissions assigned to files when they are created. A misconfigured umask value could result in files with excessive permissions that can be read and/or written to by unauthorized users. |
STIG | Date |
---|---|
Oracle Linux 6 Security Technical Implementation Guide | 2019-03-20 |
Check Text ( C-53173r1_chk ) |
---|
Verify the "umask" setting is configured correctly in the "/etc/csh.cshrc" file by running the following command: # grep "umask" /etc/csh.cshrc All output must show the value of "umask" set to 077, as shown in the below: # grep "umask" /etc/csh.cshrc umask 077 If the above command returns no output, or if the umask is configured incorrectly, this is a finding. |
Fix Text (F-55467r1_fix) |
---|
To ensure the default umask for users of the C shell is set properly, add or correct the "umask" setting in "/etc/csh.cshrc" to read as follows: umask 077 |