UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Files executed through a mail aliases file must have mode 0755 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-89653 VRAU-SL-000585 SV-100303r1_rule Medium
Description
If a file executed through a mail alias file has permissions greater than 0755, it can be modified by an unauthorized user and may contain malicious code or instructions that could compromise the system.
STIG Date
VMware vRealize Automation 7.x SLES Security Technical Implementation Guide 2018-10-12

Details

Check Text ( C-89345r1_chk )
Examine the contents of the /etc/aliases file:

# more /etc/aliases

Examine the aliases file for any directories or paths that may be used:

# ls -lL

Check the permissions for any paths referenced.

If any file referenced from the aliases file has a mode more permissive than "0755", this is a finding.
Fix Text (F-96395r1_fix)
Use the "chmod" command to change the access permissions for files executed from the alias file:

# chmod 0755