System start-up files must only execute programs owned by a privileged UID or an application.

An XCCDF Rule

Details
Profiles

Description

System start-up files executing programs owned by other than root (or another privileged user) or an application indicates the system may have been compromised.

ID: SV-216307r959010_rule
Version: SOL-11.1-020380
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

Change the ownership of the file executed from system startup scripts to root, bin, or sys.

# chown root <executed file>

System start-up files must only execute programs owned by a privileged UID or an application.

Description

Remediation Templates

A Manual Procedure