Navigate

Check: RHEL-08-010543

RHEL 8 STIG: RHEL-08-010543 (in versions v1 r14 through v1 r1)

Title

A separate RHEL 8 filesystem must be used for the /tmp directory. (Cat II impact)

Discussion

The use of separate file systems for different paths can protect the system from failures resulting from a file system becoming full or failing.

Check Content

Verify that a separate file system/partition has been created for non-privileged local interactive user home directories. $ sudo grep /tmp /etc/fstab /dev/mapper/rhel-tmp /tmp xfs defaults,nodev,nosuid,noexec 0 0 If a separate entry for the file system/partition "/tmp" does not exist, this is a finding.

Fix Text

Migrate the "/tmp" directory onto a separate file system/partition.

Additional Identifiers

Rule ID: SV-230295r627750_rule

Vulnerability ID: V-230295

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings