Detections
Analytics
AIX7-00-001034 - The AIX root account must not have world-writable directories in its executable search path.
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
If the root search path contains a world-writable directory, malicious software could be placed in the path by intruders and/or malicious users and inadvertently run by root with all of root's privileges.Solution
For each world-writable path in root's executable search path, perform one of the following.Remove the world-writable permission on the directory.
Run command:
# chmod o-w <path>
-OR-
Remove the world-writable directory from the executable search path. Identify and edit the initialization file referencing the world-writable directory and remove it from the PATH variable.
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_AIX_7-x_V2R8_STIG.zip
Item Details
Audit Name: DISA STIG AIX 7.x v2r8
References: CAT|II, CCI|CCI-000366, Rule-ID|SV-215193r508663_rule, STIG-ID|AIX7-00-001034, STIG-Legacy|SV-101719, STIG-Legacy|V-91621, Vuln-ID|V-215193
Plugin: Unix
Control ID: 2118271f02d06dbae999e218945d5dd95d16bfaaa649a2d6599bb72d568a694c