5.1.5 Check Library folder for world writable files

Information

Folders in /Library should not be world writable. The audit check excludes the /Library/Caches folder where the sticky bit is set.

Solution

Change permissions so that 'Others' can only execute. (Example Below)
sudo chmod -R o-w /Bad/Directory

See Also

https://workbench.cisecurity.org/files/300

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6

Plugin: Unix

Control ID: ebbe5d5aa76b38c6c5ec6bb4a18b4c6b226a6af791bb6cfb2a38e5316df3f882