Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-38699 | RHEL-06-000337 | SV-50500r2_rule | Low |
Description |
---|
Allowing a user account to own a world-writable directory is undesirable because it allows the owner of that directory to remove or replace any files that may be placed in the directory by other users. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2014-06-10 |
Check Text ( None ) |
---|
None |
Fix Text (F-43648r1_fix) |
---|
All directories in local partitions which are world-writable should be owned by root or another system account. If any world-writable directories are not owned by a system account, this should be investigated. Following this, the files should be deleted or assigned to an appropriate group. |