Check: AIX7-00-002088
IBM AIX 7.x STIG:
AIX7-00-002088
(in versions v3 r1 through v1 r1)
Title
AIX library files must have mode 0755 or less permissive. (Cat II impact)
Discussion
Unauthorized access could destroy the integrity of the library files.
Check Content
Check the mode of library files by running the following command: # ls -lLR /usr/lib /lib If any of the library files have a mode more permissive than "0755", this is a finding.
Fix Text
Change the mode of library files to "0755" or less permissive by running the following command: # chmod 0755 <path>/<library-file> NOTE: Library files should have an extension of .a or .so (a=archive, so=shared object) extension, possibly followed by a version.
Additional Identifiers
Rule ID: SV-215279r991560_rule
Vulnerability ID: V-215279
Group Title: SRG-OS-000259-GPOS-00100
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001499 |
Limit privileges to change software resident within software libraries. |
Controls
Number | Title |
---|---|
CM-5(6) |
Limit Library Privileges |