An error occurred:

Check: GEN002320

Solaris 10 SPARC STIG: GEN002320 (in versions v2 r4 through v1 r19)

Title

Audio devices must have mode 0660 or less permissive. (Cat II impact)

Discussion

Globally accessible audio and video devices have proven to be security hazards. There is software that can activate system microphones and video devices connected to user workstations and/or X terminals. Once the microphone has been activated, it is possible to eavesdrop on otherwise private conversations without the victim being aware of it. This action effectively changes the user's microphone to a bugging device.

Check Content

Check the mode of audio devices. # ls -lL /dev/audio If the mode of audio devices are more permissive than 0660, this is a finding.

Fix Text

Change the mode of the audio device. # chmod -R 0660 /dev/audio

Additional Identifiers

Rule ID: SV-226575r854418_rule

Vulnerability ID: V-226575

Group Title: SRG-OS-000312

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002165

The information system enforces organization-defined discretionary access control policies over defined subjects and objects.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-3 (4)

Discretionary Access Control