Check: GEN000920
SOLARIS 9 SPARC STIG:
GEN000920
(in version v1 r12)
Title
The root account's home directory (other than /) must have mode 0700. (Cat II impact)
Discussion
Permissions greater than 0700 could allow unauthorized users access to the root home directory.
Check Content
Fix Text
The root home directory will have permissions of 0700. Do not change the protections of the / directory. Use the following command to change protections for the root home directory. # chmod 0700 /rootdir.
Additional Identifiers
Rule ID: SV-775r2_rule
Vulnerability ID: V-775
Group Title: GEN000920
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000225 |
Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) which are necessary to accomplish assigned organizational tasks. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AC-6 |
Least Privilege |