9.7 Check Permissions on User Home Directories

Information

While the system administrator can establish secure permissions for users' home
directories, the users can easily override these.

Group or world-writable user home directories may enable malicious users to steal or
modify other users' data or to gain another user's system privileges.

Solution

Correct or justify any items discovered in the Audit step. Determine if any user directory
permissions are world-readable, writable, or executable, and work with those users to
determine the best course of action in accordance with site policy.

See Also

https://workbench.cisecurity.org/files/616

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CSCv6|3.1

Plugin: Unix

Control ID: 817ef9fa171bb17309aca9ad05f0c06e60fa349508e3a4049453bbd337437332