Check: PHTN-67-000098
VMware vSphere 6.7 Photon OS STIG:
PHTN-67-000098
(in versions v1 r6 through v1 r1)
Title
The Photon operating system must be configured so that all global initialization scripts are protected from unauthorized modification. (Cat II impact)
Discussion
Local initialization files are used to configure the user's shell environment upon login. Malicious modification of these files could compromise accounts upon login.
Check Content
At the command line, execute the following command: # find /etc/bash.bashrc /etc/profile /etc/profile.d/ -xdev -type f -a '(' -perm -002 -o -not -user root -o -not -group root ')' -exec ls -ld {} \; If any files are returned, this is a finding.
Fix Text
At the command line, execute the following commands for each returned file: # chmod o-w <file> # chown root:root <file>
Additional Identifiers
Rule ID: SV-239169r675315_rule
Vulnerability ID: V-239169
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |