UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The system default umask for the csh shell must be 077.


Overview

Finding ID Version Rule ID IA Controls Severity
V-50673 OL6-00-000343 SV-64879r1_rule Low
Description
The umask value influences the permissions assigned to files when they are created. A misconfigured umask value could result in files with excessive permissions that can be read and/or written to by unauthorized users.
STIG Date
Oracle Linux 6 Security Technical Implementation Guide 2019-03-20

Details

Check Text ( C-53173r1_chk )
Verify the "umask" setting is configured correctly in the "/etc/csh.cshrc" file by running the following command:

# grep "umask" /etc/csh.cshrc

All output must show the value of "umask" set to 077, as shown in the below:

# grep "umask" /etc/csh.cshrc
umask 077

If the above command returns no output, or if the umask is configured incorrectly, this is a finding.
Fix Text (F-55467r1_fix)
To ensure the default umask for users of the C shell is set properly, add or correct the "umask" setting in "/etc/csh.cshrc" to read as follows:

umask 077