Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
ACLs for system files and directories do not conform to minimum requirements.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-1130 | 2.006 | SV-29507r1_rule | ECCD-1 ECCD-2 | Medium |
| Description |
|---|
| Failure to properly configure file and directory permissions (ACLs) allows the possibility of unauthorized and anonymous modification to the operating system and installed applications. |
| STIG | Date |
|---|---|
| Windows 2008 Member Server Security Technical Implementation Guide | 2015-06-25 |
Details
| Check Text ( None ) |
|---|
| None |
| Fix Text (F-29104r1_fix) |
|---|
| Maintain the default file ACLs, configure the Security Option: “Network access: Let everyone permissions apply to anonymous users” to “Disabled” (V-3377) and restrict the Power Users group to include no members. |