STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system must use a separate file system for /tmp.

DISA Rule

SV-208793r603263_rule

Vulnerability Number

V-208793

Group Title

SRG-OS-000480

Rule Version

OL6-00-000001

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

The "/tmp" directory is a world-writable directory used for temporary file storage. Ensure it has its own partition or logical volume at installation time, or migrate it using LVM.

Check Contents

Run the following command to determine if "/tmp" is on its own partition or logical volume:

$ mount | grep "on /tmp "

If "/tmp" has its own partition or volume group, a line will be returned.
If no line is returned, this is a finding.

Vulnerability Number

V-208793

Documentable

False

Rule Version

OL6-00-000001

Severity Override Guidance

Run the following command to determine if "/tmp" is on its own partition or logical volume:

$ mount | grep "on /tmp "

If "/tmp" has its own partition or volume group, a line will be returned.
If no line is returned, this is a finding.

Check Content Reference

M

Target Key

2928

Comments