STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Permissions on user .netrc files must be 750 or less permissive.

DISA Rule

SV-216420r603267_rule

Vulnerability Number

V-216420

Group Title

SRG-OS-000480

Rule Version

SOL-11.1-070040

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

The root role is required.

Change the permissions on users' .netrc files to 750 or less permissive.

# chmod 750 [file name]

Check Contents

The root role is required.

Check that permissions on user .netrc files are 750 or less permissive.

# for dir in \
`logins -ox | awk -F: '($8 == "PS") { print $6 }'`; do
find ${dir}/.netrc -type f $ \
-perm -g+r -o -perm -g+w -o -perm -g+x -o \
-perm -o+r -o -perm -o+w -o -perm -o+x $ \
-ls 2>/dev/null
done

If output is produced, this is a finding.

Vulnerability Number

V-216420

Documentable

False

Rule Version

SOL-11.1-070040

Severity Override Guidance

Check Content Reference

Target Key

4022

Permissions on user .netrc files must be 750 or less permissive.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments