Check: GEN005760
Solaris 10 SPARC STIG:
GEN005760
(in versions v2 r4 through v1 r19)
Title
The NFS export configuration file must have mode 0644 or less permissive. (Cat III impact)
Discussion
Excessive permissions on the NFS export configuration file could allow unauthorized modification of the file, which could result in Denial of Service to authorized NFS exports and the creation of additional unauthorized exports.
Check Content
# ls -lL /etc/dfs/dfstab If the file has a mode more permissive than 0644, this is a finding.
Fix Text
Change the permissions of the dfstab file to 664 or less permissive. # chmod 0644 /etc/dfs/dfstab
Additional Identifiers
Rule ID: SV-227008r603265_rule
Vulnerability ID: V-227008
Group Title: SRG-OS-000480
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
CM-6 |
Configuration Settings |