GEN001590 - All run control scripts must have no extended ACLs - '/etc/init.d'

Information

If the startup files are writable by other users, they could modify the startup files to insert malicious commands into the startup files.

Solution

Remove the extended ACL from the file.
# setfacl --remove-all <run control script with extended ACL>

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6, CAT|II, CCI|CCI-000225, Group-ID|V-22353, Rule-ID|SV-37196r1_rule, STIG-ID|GEN001590, Vuln-ID|V-22353

Plugin: Unix

Control ID: 6144bab3f5b8c6eb9189e55cef49e49d029623de06db5681ac0325e2d0237214