Differences

This shows you the differences between two versions of the page.

--- ubuntu1604:1:1:15 [2017/05/02 01:53]
Piotr Kłoczewski utworzono
+++ ubuntu1604:1:1:15 [2017/05/02 12:30]
Piotr Kłoczewski
@@ Line 1: / Line 1: @@
 ====== 1.1.15 Ensure nosuid option set on /dev/shm partition (Scored) ======
-**Profile Applicability:** \\
+=====Profile Applicability=====
+<code>
-<note>Level 1 - Server \\
+Level 1 - Server
-Level 1 - Workstation</note>
+Level 1 - Workstation
+</code>
-**Description:** \\
+=====Description=====
-The ''nosuid'' mount option specifies that the filesystem cannot contain ''setuid'' files. \\ \\
+The ''nosuid'' mount option specifies that the filesystem cannot contain ''setuid'' files.
-**Rationale:** \\
+=====Rationale=====
-Setting this option on a file system prevents users from introducing privileged programs onto the system and allowing non-root users to execute them. \\ \\
+Setting this option on a file system prevents users from introducing privileged programs onto the system and allowing non-root users to execute them.
-**Audit:** \\
+=====Audit=====
 Run the following command and verify that the ''nosuid'' option is set on ''/dev/shm''. \\
 <Code:bash>
@@ Line 15: / Line 15: @@
 tmpfs on /dev/shm type tmpfs (rw,nosuid,nodev,noexec,relatime)
 </Code>
-\\
+=====Remediation=====
-**Remediation:** \\
 Edit the ''/etc/fstab'' file and add ''nosuid'' to the fourth field (mounting options) for the ''/dev/shm'' partition. See the ''fstab(5)'' manual page for more information. \\
 Run the following command to remount ''/dev/shm'': \\