UCF STIG Viewer Logo

Files executed through a mail aliases file must have mode 0755 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-240438 VRAU-SL-000585 SV-240438r671055_rule Medium
Description
If a file executed through a mail alias file has permissions greater than 0755, it can be modified by an unauthorized user and may contain malicious code or instructions that could compromise the system.
STIG Date
VMware vRealize Automation 7.x SLES Security Technical Implementation Guide 2021-06-24

Details

Check Text ( C-43671r671053_chk )
Examine the contents of the /etc/aliases file:

# more /etc/aliases

Examine the aliases file for any directories or paths that may be used:

# ls -lL

Check the permissions for any paths referenced.

If any file referenced from the aliases file has a mode more permissive than "0755", this is a finding.
Fix Text (F-43630r671054_fix)
Use the "chmod" command to change the access permissions for files executed from the alias file:

# chmod 0755