UCF STIG Viewer Logo

The root account's home directory must not have an extended ACL.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22309 GEN000930 SV-25956r1_rule ECLP-1 Medium
Description
File system extended ACLs provide access to files beyond what is allowed by the mode numbers of the files.
STIG Date
VMware ESX 3 Server 2016-05-13

Details

Check Text ( C-27457r1_chk )
Verify the root account's home directory has no extended ACL.
# ls -ld ~root
If the permissions include a "+", the directory has an extended ACL and this is a finding.
Fix Text (F-26097r1_fix)
Remove the extended ACL from the root account's home directory.