All run control scripts must have no extended ACLs.

An XCCDF Rule

Description

If the startup files are writable by other users, these users could modify the startup files to insert malicious commands into the startup files.

ID: SV-216300r959010_rule
Version: SOL-11.1-020310
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

Remove the extended ACL from the file.

# chmod A- [run control script with extended ACL]