CentOS 4/5 File Permission Controls: Mask Pi/GR

Document created by malderman on Jun 28, 2011
Version 1Show Document
  • View in full screen mode

CID     Statement

1072    Status of the 'Minimum Password Age' setting

1111    Current content of the logon banner (Windows/Unix/Linux) / Permissions set for the '/etc/issue' file (Unix/Linux)

1112    Shell logon banner in 'etc/issue.net' / Permissions set for the '/etc/issue.net' file

1124    Status of the banner in '/etc/motd' (after logon) / Permissions set for the '/etc/motd' file

1225    UMASK setting for '/etc/profile' / Permissions set for the '/etc/profile' directory

1226    UMASK setting for '/etc/csh.login' / Permissions set for the '/etc/csh.login' file

1227    UMASK setting for '/etc/csh.cshrc' / Permissions set for the '/etc/csh.cshrc' file

1228    UMASK setting for '/etc/bashrc' / Permissions set for the '/etc/bashrc' file

1229    UMASK setting for '/root/.bash_profile' / Permissions set for the '/root/.bash_profile'

1230    UMASK setting for '/root/bashrc' / Permissions set for the '/root/bashrc' file

1231    UMASK setting for '/root/.cshrc' / Permissions set for the '/root/.cshrc' file

1232    Status of the UMASK setting for '/root/.tcshrc' / Permissions set for the '/root/.tcshrc' file

1235    Status of the 'Core dump' settings / Permissions set for the /etc/security/limits.conf file

1236    Permissions set for the '/etc/pam.d/su' command / Access to 'su' command execution restricted to 'wheel' group ONLY

1239    Contents of the 'at.allow' setting / Permissions set for the 'at.allow' command execution

1241    Current methods by which telnet login as 'root' is permitted / Permissions set for the '/etc/securetty' or '/etc/default/login' files

1242    Status of the 'GRUB password' setting in '/etc/grub.conf' / Permissions set for the '/etc/grub.conf' file

1243    Status of the LILO password setting in '/etc/lilo.conf' / Permissions set for the '/etc/lilo.conf' file

1244    Status of the 'Single-user mode authentication' setting / Permissions set for the '/etc/inittab' file

1419    Permissions set for the 'cron.allow' file / List of users in the 'cron.allow' file

1605    Status of the logon banner prior to 'vsftpd' access / Permissions set for the 'vsftpd.conf' file

1628    Permissions set for the 'ftpusers' file

1744    Status of the '/etc/X11/xdm/Xservers' options / Permissions set for the '/etc/X11/xdm/Xservers' file

1745    Permissions set for the 'gdm.conf' file / Status of the '-nolisten tcp' setting

1748    Permissions set for the '/var/log/boot.log' file

1749    Permissions set for the '/var/log/cron/*' files

1750    Permissions set for the '/var/log/dmesg' file

1751    Permissions set for the '/var/log/maillog/*' file

1752    Permissions set for the '/messages*' files

1753    Permissions set for the '/var/log/rpmpkgs*' file

1754    Permissions set for the '/var/adm/sa/*' files

1755    Permissions set for the '/var/log/scrollkeeper.log' file

1756    Permissions set for the '/var/log/secure*' file

1757    Permissions set for the '/var/log/spooler*' file

1758    Permissions set for the '/var/log/httpd/*' file

1759    Permissions set for the '/var/log/news/*' file

1760    Permissions set for the '/var/log/pgsql' file

1761    Permissions set for the '/var/log/samba/*' file

1762    Permissions set for the '/var/log/squid/*' file

1763    Permissions set for the '/var/log/vbox/*' file

1764    Permissions set for the '/wtmp*' file

1765    Permissions set for the '/var/log/kernel' file

1766    Permissions set for the 'syslog' file

1767    Permissions set for the '/var/log/loginlog' file

1781    Permissions set for the '/etc/sysctl.conf' file

1782    Status of the '/etc/X11/xinit/xserverrc' / Permissions set for the '/etc/X11/xinit/xserverrc' file

1783    Permissions set for the '/var/log/ksyms' (0-9) file

1813    Permissions set for the '/dev/tty' file

2152    Permissions set for the '/etc/passwd' file

2188    Permissions set for the '/etc/shadow' file

2189    Permissions set for the '/etc/group' file

2190    Permissions set for the '/etc/gshadow' file

2264    Permissions set for the '/etc/issue' file

2269    Permissions set for the '/etc/csh.login' file

2561    Permissions set for the 'chown' command

2602    Permissions set for the '/etc' directory

2617    Permissions set for the '/usr/sbin' directory

2624    Permissions set for the '/usr/bin' directory

2626    Permissions set for the '/usr' directory

2627    Permissions set for the  '/' (root) directory

2628    Permissions set for the '/dev' directory

2629    Permissions set for the '/bin' directory

2661    Status of the 'sticky bit' set for the '/tmp' directory

2662    Status of the 'sticky bit' set on the '/var/tmp' directory

2677    Permissions set for the '/var' directory

2702    Permission set for '/etc/inittab'

2821    Permissions set for the '/dev/null' file

2822    Permissions set for the '/dev/mem' character file

2826    Permissions set for the '/dev/kmem' file

3260    Permissions set for the '/bin/bash' file

3584    Permissions set for the '/var/www' directory

3866    Permissions set for the '/etc/securetty' file

Attachments

    Outcomes