All run control scripts must have no extended ACLs.
Overview
| Finding ID |
Version |
Rule ID |
IA Controls |
Severity |
| V-216300 |
SOL-11.1-020310 |
SV-216300r959010_rule |
|
Medium |
| Description |
| If the startup files are writable by other users, these users could modify the startup files to insert malicious commands into the startup files. |
Details
| Check Text (C-17536r370988_chk) |
Verify run control scripts have no extended ACLs.
# ls -lL /etc/rc* /etc/init.d
If the permissions include a "+", the file has an extended ACL and this is a finding. |
| Fix Text (F-17534r370989_fix) |
Remove the extended ACL from the file.
# chmod A- [run control script with extended ACL] |