Navigate

Check: RHEL-06-000001

Red Hat Enterprise Linux 6 STIG: RHEL-06-000001 (in versions v2 r2 through v1 r14)

Title

The system must use a separate file system for /tmp. (Cat III impact)

Discussion

The "/tmp" partition is used as temporary storage by many programs. Placing "/tmp" in its own partition enables the setting of more restrictive mount options, which can help protect programs which use it.

Check Content

Run the following command to determine if "/tmp" is on its own partition or logical volume: $ mount | grep "on /tmp " If "/tmp" has its own partition or volume group, a line will be returned. If no line is returned, this is a finding.

Fix Text

The "/tmp" directory is a world-writable directory used for temporary file storage. Ensure it has its own partition or logical volume at installation time, or migrate it using LVM.

Additional Identifiers

Rule ID: SV-217846r603264_rule

Vulnerability ID: V-217846

Group Title: SRG-OS-000480

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings