The Photon operating system must be configured so the "/etc/skel" default scripts are protected from unauthorized modification.

An XCCDF Rule

Description

If the skeleton files are not protected, unauthorized personnel could change user startup parameters and possibly jeopardize user files.

ID: SV-256559r991589_rule
Version: PHTN-30-000090
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

At the command line, run the following commands:

# chmod 750 /etc/skel/.bash_logout
# chmod 644 /etc/skel/.bash_profile
# chmod 750 /etc/skel/.bashrc
# chown root:root /etc/skel/.bash_logout# chown root:root /etc/skel/.bash_profile
# chown root:root /etc/skel/.bashrc