ACLs for system files and directories do not conform to minimum requirements.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-1130	2.006	SV-29507r1_rule	ECCD-1 ECCD-2	Medium

Description
Failure to properly configure file and directory permissions (ACLs) allows the possibility of unauthorized and anonymous modification to the operating system and installed applications.

STIG	Date
Win2k8 Audit	2013-06-10

Details

Check Text ( None )
None

Fix Text (F-29104r1_fix)
Maintain the default file ACLs, configure the Security Option: “Network access: Let everyone permissions apply to anonymous users” to “Disabled” (V-3377) and restrict the Power Users group to include no members.