Access rights to user's home directory is not restricted
Description
A home directory is a file system directory on a multi-user operating system containing files for a given user of the system. Every user's home directory access rights must be restricted, otherwise it may enable malicious users to steal or modify other user's data or to gain another user's system privileges. Therefore, it's recommended to restrict only owners to have full permission, groups to have read/execute permission, others to have no access rights to user's home directory.
Severity
important
Category
Linux - User Account Management
Resolution
Follow the below steps to resolve the misconfiguration.
Change users' home directory permission other than 750 (i.e group doesn't have write permission and others doesn't have any permission) using the following command:
chmod
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.