STIGQter: STIG Summary: Solaris 11 X86 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Permissions on user .netrc files must be 750 or less permissive.

DISA Rule

SV-216183r603268_rule

Vulnerability Number

V-216183

Group Title

SRG-OS-000480

Rule Version

SOL-11.1-070040

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

The root role is required.

Change the permissions on users' .netrc files to 750 or less permissive.

# chmod 750 [file name]

Check Contents

The root role is required.

Check that permissions on user .netrc files are 750 or less permissive.

# for dir in \
`logins -ox | awk -F: '($8 == "PS") { print $6 }'`; do
find ${dir}/.netrc -type f $ \
-perm -g+r -o -perm -g+w -o -perm -g+x -o \
-perm -o+r -o -perm -o+w -o -perm -o+x $ \
-ls 2>/dev/null
done

If output is produced, this is a finding.

Vulnerability Number

V-216183

Documentable

False

Rule Version

SOL-11.1-070040

Severity Override Guidance

Check Content Reference

Target Key

4021

Permissions on user .netrc files must be 750 or less permissive.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments