GEN001540 - All files and directories contained in interactive user's home directories must be owned by the home directory's owner.

Information

If users do not own the files in their directories, unauthorized users may be able to access them. Additionally, if files are not owned by the user, this could be an indication of system compromise.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Change the ownership of files and directories in user's home directories to the owner of the home directory.
Procedure:
# chown accountowner filename
OR
# find /<usershomedirectory> ! -fstype nfs ! -user <username> ! /( -name .login -o -name .cshrc -o -name .logout -o -name .profile -o -name .bash_profile -o -name .bashrc -o -name .env -o -name .dtprofile -o -name .dispatch -o -name .emacs -o -name .exrc ) -exec chown <username> {} ;

Item Details

Audit Name: DISA AIX 5.3 STIG v1r2

Category: ACCESS CONTROL

Plugin: Unix

Control ID: 27f0d5b0fa78ba0dfe8a8a9d018b5860fd52c2be8503a2b46dae9f87f7b4b4a1

Detections

Analytics

GEN001540 - All files and directories contained in interactive user's home directories must be owned by the home directory's owner.

Information

Solution

See Also

Item Details