STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:SV-230309r627750_rule
V-230309
SRG-OS-000480-GPOS-00227
RHEL-08-010660
CAT II
10
Set the mode on files being executed by the local initialization files with the following command:
$ sudo chmod 0755 <file>
Verify that local initialization files do not execute world-writable programs.
Check the system for world-writable files.
The following command will discover and print world-writable files. Run it once for each local partition [PART]:
$ sudo find [PART] -xdev -type f -perm -0002 -print
For all files listed, check for their presence in the local initialization files with the following commands:
Note: The example will be for a system that is configured to create user home directories in the "/home" directory.
$ sudo grep <file> /home/*/.*
If any local initialization files are found to reference world-writable files, this is a finding.
V-230309
False
RHEL-08-010660
Verify that local initialization files do not execute world-writable programs.
Check the system for world-writable files.
The following command will discover and print world-writable files. Run it once for each local partition [PART]:
$ sudo find [PART] -xdev -type f -perm -0002 -print
For all files listed, check for their presence in the local initialization files with the following commands:
Note: The example will be for a system that is configured to create user home directories in the "/home" directory.
$ sudo grep <file> /home/*/.*
If any local initialization files are found to reference world-writable files, this is a finding.
M
2921