Check: PHTN-67-000099
VMware vSphere 6.7 Photon OS STIG:
PHTN-67-000099
(in versions v1 r6 through v1 r1)
Title
The Photon operating system must be configured so that all system startup scripts are protected from unauthorized modification. (Cat II impact)
Discussion
If system startup scripts are accessible to unauthorized modification, this could compromise the system on startup.
Check Content
At the command line, execute the following command: # find /etc/rc.d/* -xdev -type f -a '(' -perm -002 -o -not -user root -o -not -group root ')' -exec ls -ld {} \; If any files are returned, this is a finding.
Fix Text
At the command line, execute the following commands for each returned file: # chmod o-w <file> # chown root:root <file>
Additional Identifiers
Rule ID: SV-239170r675318_rule
Vulnerability ID: V-239170
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |