UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The /etc/zones directory, and its contents, must not be group- or world-writable.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22605 GEN000000-SOL00580 SV-27019r1_rule ECLP-1 Medium
Description
Solaris zones configuration files must be protected against illicit creation, modification, and deletion.
STIG Date
Solaris 10 SPARC Security Technical Implementation Guide 2013-04-09

Details

Check Text ( C-27951r1_chk )
Check the permissions of the files and directories.

# ls -lLdR /etc/zones

If the mode of a directory is more permissive than 0755, or the mode of a file more permissive than 0644, this is a finding.
Fix Text (F-24285r1_fix)
Change the mode of the file or directory.

# chmod 0644
For directories:
# chmod 0755