UCF STIG Viewer Logo

All files and directories contained in user home directories must not have extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-226535 GEN001570 SV-226535r603265_rule Medium
Description
Excessive permissions allow unauthorized access to user files.
STIG Date
Solaris 10 SPARC Security Technical Implementation Guide 2020-12-04

Details

Check Text ( C-28696r482999_chk )
Check the contents of interactive user's home directories (99 < UID < 60000) for files with extended ACLs.

# ls -alLR < users home dir >

If the permissions include a "+", the file has an extended ACL and this is a finding.
Fix Text (F-28684r483000_fix)
Remove the extended ACL from the file.
# chmod A- [user file with extended ACL]