UCF STIG Viewer Logo

Audio devices must not have extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22367 GEN002330 SV-37569r1_rule ECLP-1 Medium
Description
File system ACLs can provide access to files beyond what is allowed by the mode numbers of the files.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2017-03-01

Details

Check Text ( C-36218r1_chk )
Check the permissions of audio devices.
# ls -lL /dev/audio* /dev/snd/*
If the permissions include a '+', the file has an extended ACL. If the file has an extended ACL and it has not been documented with the IAO, this is a finding.
Fix Text (F-31478r1_fix)
Remove the extended ACL from the file.
# setfacl --remove-all [device file]