GEN001800 - All skeleton files (typically those in /etc/skel) must have mode 0644 or less permissive.

Information

If the skeleton files are not protected, unauthorized personnel could change user startup parameters and possibly jeopardize user files.

Solution

Change the mode of skeleton files with incorrect mode.
# chmod 0644 <skeleton file>

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SOL_10_x86_V2R4_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(4), CAT|II, CCI|CCI-002165, Rule-ID|SV-227672r854481_rule, STIG-ID|GEN001800, STIG-Legacy|SV-788, STIG-Legacy|V-788, Vuln-ID|V-227672

Plugin: Unix

Control ID: ad6b587d4d466c5c8c97ed203b347a83542fdc9d342c33cf4d5f0160191506d2