IBM z/OS UNIX security parameters in etc/profile must be properly specified.

An XCCDF Rule

Details
Profiles

Description

Configuring the operating system to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements.

ID: SV-224088r958472_rule
Version: TSS0-US-000150
Severity: Medium
References: CCI-000213
Updated: about 2 months ago

Remediation Templates

Configure the etc/profile to specify the UMASK command is executed with a value of 077 and the LOGNAME variable is marked read-only for the /etc/profile file, exceptions are documented with the ISSO.

IBM z/OS UNIX security parameters in etc/profile must be properly specified.

Description

Remediation Templates

A Manual Procedure