GEN002260 - The system must be checked for extraneous device files at least weekly.


If an unauthorized device is allowed to exist on the system, there is the possibility the system may perform unauthorized operations.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


Establish a weekly automated or manual process to create a list of device files on the system and determine if any files have been added, moved, or deleted since the last list was generated.

Generate a list of device files.
# find / -type b -o -type c > device-file-list

See Also

Item Details


References: 800-53|CM-3f., CAT|III, CCI|CCI-000318, Group-ID|V-923, Rule-ID|SV-923r2_rule, STIG-ID|GEN002260, Vuln-ID|V-923

Plugin: Unix

Control ID: af0f9411576c7d127b6294472425d7191b8c73faa238d2b9a166d478fa834cf4