STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

There must be no world-writable files on the system.

DISA Rule

SV-209018r603263_rule

Vulnerability Number

V-209018

Group Title

SRG-OS-000480

Rule Version

OL6-00-000282

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

It is generally a good idea to remove global (other) write access to a file when it is discovered. However, check with documentation for specific applications before making changes. Also, monitor for recurring world-writable files, as these may be symptoms of a misconfigured application or user account.

Check Contents

To find world-writable files, run the following command for each local partition [PART], excluding special filesystems such as /selinux, /proc, or /sys:

# find [PART] -xdev -type f -perm -002

If there is output, this is a finding.

Vulnerability Number

V-209018

Documentable

False

Rule Version

OL6-00-000282

Severity Override Guidance

To find world-writable files, run the following command for each local partition [PART], excluding special filesystems such as /selinux, /proc, or /sys:

# find [PART] -xdev -type f -perm -002

If there is output, this is a finding.

Check Content Reference

M

Target Key

2928

Comments