Access rights to user's dot files and folders are not restricted
Description
In Linux OS, any file or folder that starts with a dot character (for example, /home/user/.config), commonly called a dot file or dotfile. The access rights for dot files and folders within every user's home directory must be restricted, otherwise it may enable malicious users to steal or modify other user's data. Therefore, it's recommended to restrict only owners to have full permission, groups to have no write permission, others to have no write permission to dot files and folders.
Severity
important
Category
Linux - User Account Management
Resolution
Follow the below steps to resolve the misconfiguration.
Change users' home directory permission other than 755 (i.e group and others doesn't have write permission) using the following command:
chmod
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.