STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-217177r646731_rule
V-217177
SRG-OS-000480-GPOS-00227
SLES-12-010780
CAT II
10
Remove the references to these files in the local initialization scripts or remove the world-writable permission of files referenced by SUSE operating system local initialization scripts with the following command:
> sudo chmod 0755 <file>
Verify that SUSE operating system local initialization files do not execute world-writable programs.
Check the system for world-writable files with the following command:
> sudo find / -xdev -perm -002 -type f -exec ls -ld {} \;
For all files listed, check for their presence in the local
initialization files with the following command:
Note: The example will be for a system that is configured to create
users' home directories in the "/home" directory.
> sudo find /home/* -maxdepth 1 -type f -name \.\* -exec grep -H <file> {} \;
If any local initialization files are found to reference world-writable files, this is a finding.
V-217177
False
SLES-12-010780
Verify that SUSE operating system local initialization files do not execute world-writable programs.
Check the system for world-writable files with the following command:
> sudo find / -xdev -perm -002 -type f -exec ls -ld {} \;
For all files listed, check for their presence in the local
initialization files with the following command:
Note: The example will be for a system that is configured to create
users' home directories in the "/home" directory.
> sudo find /home/* -maxdepth 1 -type f -name \.\* -exec grep -H <file> {} \;
If any local initialization files are found to reference world-writable files, this is a finding.
M
4033