Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Permissions on user .netrc files must be 750 or less permissive.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-216420 | SOL-11.1-070040 | SV-216420r959010_rule | Medium |
| Description |
|---|
| .netrc files may contain unencrypted passwords that can be used to attack other systems. |
| STIG | Date |
|---|---|
| Solaris 11 SPARC Security Technical Implementation Guide | 2024-05-30 |
Details
| Check Text ( C-17656r371348_chk ) |
|---|
| The root role is required. Check that permissions on user .netrc files are 750 or less permissive. # for dir in \ `logins -ox | awk -F: '($8 == "PS") { print $6 }'`; do find ${dir}/.netrc -type f \( \ -perm -g+r -o -perm -g+w -o -perm -g+x -o \ -perm -o+r -o -perm -o+w -o -perm -o+x \) \ -ls 2>/dev/null done If output is produced, this is a finding. |
| Fix Text (F-17654r371349_fix) |
|---|
| The root role is required. Change the permissions on users' .netrc files to 750 or less permissive. # chmod 750 [file name] |