The system must not allow users to configure .forward files.
An XCCDF Rule
Description
Use of the .forward file poses a security risk in that sensitive data may be inadvertently transferred outside the organization. The .forward file also poses a secondary risk as it can be used to execute commands that may perform unintended actions.
- ID
- SV-216433r959010_rule
- Version
- SOL-11.1-070170
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
The root role is required.
Remove any .forward files that are found.
# pfexec rm [filename]