Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-227700 | GEN002300 | SV-227700r505926_rule | Medium |
Description |
---|
System backups could be accidentally or maliciously overwritten and destroy the ability to recover the system if a compromise should occur. Unauthorized users could also copy system files. |
STIG | Date |
---|---|
Solaris 10 X86 Security Technical Implementation Guide | 2020-09-04 |
Check Text ( C-29862r488681_chk ) |
---|
Check the system for world-writable device files. Procedure: # find / -perm -2 -a \( -type b -o -type c \) -exec ls -ld {} \; If any device file(s) used for backup are writable by users other than root, this is a finding. |
Fix Text (F-29850r488682_fix) |
---|
Use the chmod command to remove the world-writable bit from the backup device files. Procedure: # chmod o-w backdevicefilename Document all changes. |