Opened 8 years ago
Closed 8 years ago
#15069 closed defect (fixed)
Minor issue with file permissions - fail SCAP security validation -> fixed in releases higher than 5.0.14
| Reported by: | VirtualBarista | Owned by: | |
|---|---|---|---|
| Component: | guest additions | Version: | VirtualBox 5.0.14 |
| Keywords: | Cc: | ||
| Guest type: | Linux | Host type: | Linux |
Description
OpenSCAP (SCAP) security validation (CCE-26966-2, reference AC-6) requires that the following directories:
/lib /lib64 /usr/lib /usr/lib64
do not contain any group (or world) writable files.
unfortunately, when guest additions are installed in a CentOS 7 guest server, there are two files that fail this validation (they are group writable):
/lib/modules/*/misc/vboxguest.ko /lib/modules/*/misc/vboxsf.ko
(also linked via /usr/lib)
While this is a minor issue (guest writable by root only), it does make the entire security validation fail.
Thank you!
Change History (2)
comment:1 by , 8 years ago
| Summary: | Minor issue with file permissions - fail SCAP security validation → Minor issue with file permissions - fail SCAP security validation -> fixed in releases higher than 5.0.14 |
|---|
Note:
See TracTickets
for help on using tickets.
I believe I have fixed this. If you would like to verify the fix, you can try a 5.0.x test build<1> as soon as builds at revision 105205 or greater appear on the page.
<1> Testbuilds