STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The root account's list of preloaded libraries must be empty.

DISA Rule

SV-226476r603265_rule

Vulnerability Number

V-226476

Group Title

SRG-OS-000480

Rule Version

GEN000950

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Edit the root user initialization files and remove any definition of LD_PRELOAD.

Check Contents

Verify the LD_PRELOAD environment variable is empty or not defined for the root user.
# echo $LD_PRELOAD
If a path list is returned, this is a finding.

Vulnerability Number

V-226476

Documentable

False

Rule Version

GEN000950

Severity Override Guidance

Verify the LD_PRELOAD environment variable is empty or not defined for the root user.
# echo $LD_PRELOAD
If a path list is returned, this is a finding.

Check Content Reference

Target Key

4060

The root account's list of preloaded libraries must be empty.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments