On 7/27/14, 11:26 PM, Shawn Wells wrote:
From: Leland Steinke<[email protected]>
Signed-off-by: Leland Steinke<[email protected]>
---
RHEL/6/input/auxiliary/stig_overlay.xml | 2 +-
RHEL/6/input/system/permissions/files.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/RHEL/6/input/auxiliary/stig_overlay.xml
b/RHEL/6/input/auxiliary/stig_overlay.xml
index 7420e5a..84515ab 100644
--- a/RHEL/6/input/auxiliary/stig_overlay.xml
+++ b/RHEL/6/input/auxiliary/stig_overlay.xml
@@ -145,7 +145,7 @@
<title>The /etc/group file must have mode 0644 or less
permissive.</title>
</overlay>
<overlay owner="disastig" ruleid="file_permissions_library_dirs" ownerid="RHEL-06-000045"
disa="1499" severity="medium">
- <VMSinfo VKey="38465" SVKey="50265" VRelease="2" />
+ <VMSinfo VKey="38465" SVKey="50265" VRelease="3" />
<title>Library files must have mode 0755 or less
permissive.</title>
</overlay>
<overlay owner="disastig" ruleid="file_ownership_library_dirs" ownerid="RHEL-06-000046"
disa="1499" severity="medium">
diff --git a/RHEL/6/input/system/permissions/files.xml
b/RHEL/6/input/system/permissions/files.xml
index 58f7926..e2883f3 100644
--- a/RHEL/6/input/system/permissions/files.xml
+++ b/RHEL/6/input/system/permissions/files.xml
@@ -208,7 +208,7 @@ Shared libraries are stored in the following directories:
</pre>
To find shared libraries that are group-writable or world-writable,
run the following command for each directory <i>DIR</i> which contains shared
libraries:
-<pre>$ find <i>DIR</i> -perm /022 -type f</pre>
+<pre>$ find -L <i>DIR</i> -perm /022 -type f</pre>
</ocil>
<rationale>Files from shared library directories are loaded into the address
space of processes (including privileged ones) or of the kernel itself at
-- 1.7.1
ack
--
SCAP Security Guide mailing list
[email protected]
https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
https://github.com/OpenSCAP/scap-security-guide/
