STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system must use a separate file system for user home directories.

DISA Rule

SV-208796r603263_rule

Vulnerability Number

V-208796

Group Title

SRG-OS-000480

Rule Version

OL6-00-000007

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

If user home directories will be stored locally, create a separate partition for "/home" at installation time (or migrate it later using LVM). If "/home" will be mounted from another system such as an NFS server, then creating a separate partition is not necessary at installation time, and the mountpoint can instead be configured later.

Check Contents

Run the following command to determine if "/home" is on its own partition or logical volume:

$ mount | grep "on /home "

If "/home" has its own partition or volume group, a line will be returned.
If no line is returned, this is a finding.

Vulnerability Number

V-208796

Documentable

False

Rule Version

OL6-00-000007

Severity Override Guidance

Run the following command to determine if "/home" is on its own partition or logical volume:

$ mount | grep "on /home "

If "/home" has its own partition or volume group, a line will be returned.
If no line is returned, this is a finding.

Check Content Reference

M

Target Key

2928

Comments