Title

The AIX global initialization files must contain the mesg -n or mesg n commands. (Cat II impact)

Discussion

Command "mesg -n" allows only the root user the permission to send messages to your workstation to avoid having others clutter your display with incoming messages.

Check Content

Check global initialization files for the presence of "mesg n" command by running: # grep "mesg" /etc/profile /etc/environment /etc/security/environ /etc/security/.profile /etc/csh.login /etc/csh.cshrc /etc/profile:mesg n /etc/environment:mesg n If any global initialization file does not contain "mesg n", or it contains the "mesg y" command, this is a finding.

Fix Text

Edit the global initialization files that do not contain "mesg n" command and add the following line to the initialization files: mesg n

Additional Identifiers

Rule ID: SV-215342r508663_rule

Vulnerability ID: V-215342

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.