UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The /etc/zones directory, and its contents, must not be group- or world-writable.


Overview

Finding ID Version Rule ID IA Controls Severity
V-226425 GEN000000-SOL00580 SV-226425r505925_rule Medium
Description
Solaris zones configuration files must be protected against illicit creation, modification, and deletion.
STIG Date
Solaris 10 SPARC Security Technical Implementation Guide 2020-09-04

Details

Check Text ( C-28586r482636_chk )
Check the permissions of the files and directories.

# ls -lLdR /etc/zones

If the mode of a directory is more permissive than 0755, or the mode of a file more permissive than 0644, this is a finding.

If zones are not installed on the system, this is not a finding.
Fix Text (F-28574r482637_fix)
Change the mode of the file or directory.

# chmod 0644
For directories:
# chmod 0755