AIX7-00-001019 - AIX device files and directories must only be writable by users with a system account or as configured by the vendor.

Information

System device files in writable directories could be modified, removed, or used by an unprivileged user to control system hardware.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Remove the world-writable permission from the device file(s) using command:
# chmod o-w <device file>

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_AIX_7-x_V2R9_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-5(6), CAT|II, CCI|CCI-001499, Rule-ID|SV-215184r508663_rule, STIG-ID|AIX7-00-001019, STIG-Legacy|SV-101581, STIG-Legacy|V-91483, Vuln-ID|V-215184

Plugin: Unix

Control ID: 59e50c9621ad65946574aa4f5c46da32b40089c3dae08da063a729a683353730