GEN002300 - Device files used for backup must only be readable and/or writable by root or the backup user.
System backups could be accidentally or maliciously overwritten and destroy the ability to recover the system if a compromise should occur. Unauthorized users could also copy system files. NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Use the chmod command to remove the world-writable bit from the backup device files. Procedure: # chmod o-w <back device filename> Document all changes.