Free DISA STIG and SRG Library | Vaulted

V-56589

The operating system must define default permissions for all authenticated users in such a way that the user can only read and modify their own files.

Finding ID
SRG-OS-000480-GPOS-00228
Rule ID
SV-70849r1_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-OS-000480-GPOS-00228
CCI
CCI-000366
Target Key
(None)
Documentable
No
Discussion

Setting the most restrictive default permissions ensures that when new accounts are created they do not have unnecessary access.

Fix Text

Configure the operating system to define default permissions for all authenticated users in such a way that the user can only read and modify their own files.

Check Content

Verify the operating system defines default permissions for all authenticated users in such a way that the user can only read and modify their own files. If it does not, this is a finding.