Rules Related To 'bash'

Component overview

Relevant packages:

Relevant groups:

None

Changelog:

No changes recorded.

Relevant rules:

Rule details

Ensure the Default Bash Umask is Set Correctly

accounts_umask_etc_bashrc

Description

To ensure the default umask for users of the Bash shell is set properly, add or correct the umask setting in /etc/bash.bashrc to read as follows: 

umask $var_accounts_user_umask

Rationale

The umask value influences the permissions assigned to files when they are created. A misconfigured umask value could result in files with excessive permissions that can be read or written to by unauthorized users.

Ensure the Root Bash Umask is Set Correctly

accounts_umask_root

Description

To ensure the root user's umask of the Bash shell is set properly, add or correct the umask setting in /root/.bashrc or /root/.bashrc to read as follows: 

umask 0027

Rationale

The umask value influences the permissions assigned to files when they are created. A misconfigured umask value could result in files with excessive permissions that can be read or written to by unauthorized users.