STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

V-901

CAT II (Medium)

All user home directories must have mode 0750 or less permissive.

Rule ID

SV-45028r1_rule

STIG

SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

Version

V1R12

CCIs

CCI-000225

Discussion

Excessive permissions on home directories allow unauthorized access to user files.

Check Content

Check the home directory mode of each user in /etc/passwd.

Procedure:
# cut -d: -f6 /etc/passwd|sort|uniq|xargs -n1 ls -ld

If a user home directory's mode is more permissive than 0750, this is a finding.

Note: Application directories are allowed and may need 0755 permissions (or greater) for correct operation.

Fix Text

Change the mode of user home directories to 0750 or less permissive.

Procedure (example):
# chmod 0750 <home directory>

Note: Application directories are allowed and may need 0755 permissions (or greater) for correct operation.