GEN000000-SOL00270 - The /usr/aset/userlist file must not have an extended ACL.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

File system ACLs can provide access to files beyond what is allowed by the mode numbers of the files.

Solution

Remove the extended ACL from the file.
# chmod A- /usr/aset/userlist

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_SPARC_V2R2_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(4), CAT|II, CCI|CCI-000366, Rule-ID|SV-226418r603265_rule, STIG-ID|GEN000000-SOL00270, STIG-Legacy|SV-27015, STIG-Legacy|V-22601, Vuln-ID|V-226418

Plugin: Unix

Control ID: 1a5a37ccc9d08d850a40b2b8507dff102e738fa74705295c2783b62f3e3230ad