Sticky files (UNIX)

Module: File Find

This check reports files that have the save text after execution (sticky) bit set. When the bit is set on an executable file, the system will retain the program code in the file buffer cache after the program has finished. When the bit is set on a directory, only the owner of a file or the owner of the directory can delete files from the directory. System performance can degrade if the bit is set on too many programs. Enter full path names in the file list to specify files to be excluded from the check. Enter the file-type proceeded by a pipe character to exclude files of that type. For example, you would enter CHAR to exclude character device files. Available file-types are CHAR, BLOCK, FIFO, and SOCK.

The following table lists the error message for the check.

Table: Error message for Sticky files

Message String ID and Category	Platform and Message Numeric ID	Message Title and Description	Additional Information
String ID: STKU_STICKY Category: System Information	UNIX (5635)	Title: Sticky bit set Description:The listed files have the save text after execution (sticky) bit set. When the bit is set on an executable file, the system will retain the program code in the file buffer cache after the program is finished. When the bit is set on a directory, only the owner of a file or the owner of the directory can delete files from the directory. Setting this bit on too many programs can degrade system performance. On some systems, the sticky bit can have security ramifications if NOT set on system directories. You should examine the listed files to be sure that the sticky bit settings are authorized. Use the chmod command to change the settings if appropriate.	Severity: green-0 Correctable: false Snapshot Updatable: false Template Updatable: false Information Field Format: [%s]

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_STICKY

Category: System Information

UNIX (5635)

Title: Sticky bit set

Description:The listed files have the save text after execution (sticky) bit set. When the bit is set on an executable file, the system will retain the program code in the file buffer cache after the program is finished. When the bit is set on a directory, only the owner of a file or the owner of the directory can delete files from the directory. Setting this bit on too many programs can degrade system performance. On some systems, the sticky bit can have security ramifications if NOT set on system directories. You should examine the listed files to be sure that the sticky bit settings are authorized. Use the chmod command to change the settings if appropriate.

Severity: green-0

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]