UCF STIG Viewer Logo

All run control scripts must have no extended ACLs.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22353 GEN001590 SV-26000r1_rule ECLP-1 Medium
Description
If the startup files are writable by other users, the startup files could be modified to insert malicious commands.
STIG Date
VMware ESX 3 Server 2016-05-13

Details

Check Text ( C-27524r1_chk )
Verify run control scripts have no extended ACLs.
# ls -lL /etc/rc* /etc/init.d
If the permissions include a "+", the file has an extended ACL and this is a finding.
Fix Text (F-26196r1_fix)
Remove the extended ACL from the run control script(s).