9.9 Secure plug-in library locations

Information

If plug-in directories are not secure, the plug-ins could be misused, tampered with, or otherwise accessed in ways that could jeopardize the security of the server.

Solution

hange the privileges for all plug-in directories so they are set to 755.

On a Linux system, perform the following for each directory needing its privileges changed:
[db2inst1@tgt-db2-101-abc123 IBM]$ chmod 755 <directory>

See Also

https://workbench.cisecurity.org/files/162

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b.

Plugin: Unix

Control ID: 172425c324ab3a15826e44c532770d4ebbdfa8bf15ee757e10e2877ad4794f23