OL07-00-010010 - The Oracle Linux operating system must be configured so that the file permissions, ownership, and group membership of system files and commands match the vendor values.

Information

Discretionary access control is weakened if a user or group has access permissions to system files and directories greater than the default.

Satisfies: SRG-OS-000257-GPOS-00098, SRG-OS-000278-GPOS-00108

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Run the following command to determine which package owns the file:

# rpm -qf <filename>

Reset the user and group ownership of files within a package with the following command:

# rpm --setugids <packagename>

Reset the permissions of files within a package with the following command:

# rpm --setperms <packagename>

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_7_V2R5_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-7(1), CAT|I, CCI|CCI-001494, CCI|CCI-001496, Rule-ID|SV-221652r646955_rule, STIG-ID|OL07-00-010010, STIG-Legacy|SV-108149, STIG-Legacy|V-99045, Vuln-ID|V-221652

Plugin: Unix

Control ID: d421b5dc69b4f7cf8b3feb07df00df254718b2fcf7adf3f7caa0ddc491a5e276