UCF STIG Viewer Logo

The Photon operating system must be configured so that the /root path is protected from unauthorized access.


Finding ID Version Rule ID IA Controls Severity
V-239168 PHTN-67-000097 SV-239168r675312_rule Medium
If the /root path is accessible from users other than root, unauthorized users could change the root partitions files.
VMware vSphere 6.7 Photon OS Security Technical Implementation Guide 2022-06-17


Check Text ( C-42379r675310_chk )
At the command line, execute the following command:

# stat -c "%n permissions are %a and owned by %U:%G" /root

Expected result:

/root permissions are 700 and owned by root:root

If the output does not match the expected result, this is a finding.
Fix Text (F-42338r675311_fix)
At the command line, execute the following commands:

# chmod 700 /root
# chown root:root /root