The Photon operating system must be configured so that all global initialization scripts are protected from unauthorized modification.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-256561 | SRG-OS-000480-GPOS-00227 | PHTN-30-000092 | SV-256561r991589_rule | 2024-12-16 | 1 |
Description
Local initialization files are used to configure the user's shell environment upon login. Malicious modification of these files could compromise accounts upon login.
ℹ️ Check
At the command line, run the following command:
# find /etc/bash.bashrc /etc/profile /etc/profile.d/ -xdev -type f -a '(' -perm -002 -o -not -user root -o -not -group root ')' -exec ls -ld {} \;
If any files are returned, this is a finding.
✔️ Fix
At the command line, run the following commands for each returned file:
# chmod o-w <file>
# chown root:root <file>