InformationThe McAfee VirusScan Enterprise for Linux software runs its processes under the nails user, which is part of the nailsgroup group. The WEB GUI is also accessed using the nails user. Ensuring this account only has access to the required functions necessary for its intended role will mitigate the possibility of the nails user/nailsgroup group from being used to perform malicious destruction to the system in the event of a compromise.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
SolutionAccess the Linux system console command line as root.
Navigate to each path to which the nails user or nailsgroup group has unnecessary permissions/ownership.
Using the chmod command, reduce or remove permissions for the nails user.
Using the chown command to remove ownership by the nails user or nailsgroup group.