Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-834 | GEN004420 | SV-45853r2_rule | ECLP-1 | Medium |
Description |
---|
If a file executed through a mail aliases file has permissions greater than 0755, it can be modified by an unauthorized user and may contain malicious code or instructions potentially compromising the system. |
STIG | Date |
---|---|
SUSE Linux Enterprise Server v11 for System z | 2015-01-26 |
Check Text ( C-43151r2_chk ) |
---|
If the “sendmail” package is not installed, this is not applicable. Examine the contents of the /etc/aliases file. Procedure: # more /etc/aliases Examine the aliases file for any utilized directories or paths. # ls -lL Check the permissions for any paths referenced. If any file referenced from the aliases file has a mode more permissive than 0755, this is a finding. |
Fix Text (F-39237r1_fix) |
---|
Use the chmod command to change the access permissions for files executed from the alias file. For example: # chmod 0755 filename. |