An XCCDF Group - A logical subset of the XCCDF Benchmark
CREATE_HOME
/etc/login.defs
yes
CREATE_HOME yes
FAIL_DELAY
/etc/security/limits.conf
/etc/security/limits.d/
* hard maxlogins
$ sudo mkdir --mode 000 /tmp/tmp-inst
/etc/security/namespace.conf
/tmp /tmp/tmp-inst/ level root,adm
$ sudo mkdir --mode 000 /var/tmp/tmp-inst
/var/tmp /var/tmp/tmp-inst/ level root,adm
TMOUT
/etc/profile
/etc/profile.d/autologout.sh
TMOUT=
/etc/passwd
$ sudo chgrp USER_GROUP /home/USER/.INIT_FILE
$ sudo chmod o-w FILE
$ sudo chown USER /home/USER/.*
/users
/tmp
/
$ sudo mkdir /home/USER
$ sudo chgrp USER_GROUP /home/USER/FILE_DIR
$ sudo chown -R USER /home/USER
$ sudo chmod 0750 /home/USER/FILE_DIR
$ sudo chgrp USER_GROUP /home/USER
$ sudo chown USER /home/USER
0740
$ sudo chmod 0740 /home/USER/.INIT_FILE
0750
$ sudo chmod 0750 /home/USER
# ls -ld /home/USER
# chmod g-w /home/USER # chmod o-rwx /home/USER
# echo $PATH
.
# ls -ld DIR
..
PATH=:/bin PATH=/bin: PATH=/bin::/sbin
umask
/etc/bash.bashrc
/etc/csh.cshrc
UMASK
/etc/profile.d