VCLD-67-000026 - VAMI must restrict access to the web root.

Information

As a rule, accounts on a web server are to be kept to a minimum, and those accounts are then restricted as to what they are allowed to access. The web root of the VAMI Lighttpd installation contains the content that is served up to the end user. This content must have the minimum necessary permissions and proper ownership to help protect against unprivileged modification of the content.

Solution

At the command prompt, execute the following commands:

# chmod 0755 <directory>
# chown root:root <directory>

Note: Substitute <directory> with each directory returned from the check.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_6-7_Y23M07_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-2, CAT|II, CCI|CCI-001082, Rule-ID|SV-239733r879631_rule, STIG-ID|VCLD-67-000026, Vuln-ID|V-239733

Plugin: Unix

Control ID: c7404fdabd0fde33622824f3e50bd244b97759c098c973905df2b40645eea4c5