Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Files executed through a mail aliases file must have mode 0755 or less permissive.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-240438 | VRAU-SL-000585 | SV-240438r671055_rule | Medium |
| Description |
|---|
| If a file executed through a mail alias file has permissions greater than 0755, it can be modified by an unauthorized user and may contain malicious code or instructions that could compromise the system. |
| STIG | Date |
|---|---|
| VMware vRealize Automation 7.x SLES Security Technical Implementation Guide | 2021-06-24 |
Details
| Check Text ( C-43671r671053_chk ) |
|---|
| Examine the contents of the /etc/aliases file: # more /etc/aliases Examine the aliases file for any directories or paths that may be used: # ls -lL Check the permissions for any paths referenced. If any file referenced from the aliases file has a mode more permissive than "0755", this is a finding. |
| Fix Text (F-43630r671054_fix) |
|---|
| Use the "chmod" command to change the access permissions for files executed from the alias file: # chmod 0755 |