Group writable files (UNIX)

Module: File Find

This check finds files that are writable by anyone with group access. If system files are involved, security problems can result because system files do not need to be modified or deleted during normal operation. Enter full path names in the file list to specify files to be excluded from the check. Enter the file-type proceeded by a pipe character to exclude files of that type. For example, you would enter CHAR to exclude character device files. Available file-types are CHAR, BLOCK, FIFO, and SOCK.

The following table lists the error message for the check.

Table: Error message for Group writable files

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_GWFILES

Category: System Information

UNIX (5639)

Title: Group writable

Description:This file is writable by anyone with group access to the files. Security problems can result because system files do not need to be modified or deleted during normal operation. Symantec recommends that you examine the file and make sure it should be writable by anyone with group access to the files. Use care when taking corrective action in response to this message. For example, the directory /usr/tmp must be group writable for correct operation of your system.

Severity: green-0

Correctable: true

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]