fapolicyd Must be Configured to Limit Access to Users Home Folders

An XCCDF Rule

Details
Profiles
Prose

Description

fapolicyd needs be configured so that users cannot give access to their home folders to other users.

warning alert: Warning

This rule is deprecated and there is no replacement at this time. Previous versions of this rule provided fixtext that would cause fapolicyd not to start.

Rationale

Users' home directories/folders may contain information of a sensitive nature. Non-privileged users should coordinate any sharing of information with a System Administrator (SA) through shared resources. fapolicyd can confine users to their home directory, not allowing them to make any changes outside of their own home directories. Confining users to their home directory will minimize the risk of sharing information.

ID: xccdf_org.ssgproject.content_rule_fapolicyd_prevent_home_folder_access
Severity: Medium
References: CCI-000366

CM-6 b

SRG-OS-000480-GPOS-00230
Updated: about 1 year ago