hardening-script-el6 icon indicating copy to clipboard operation
hardening-script-el6 copied to clipboard

Published 20 hours ago verified publisher icon fcaviggia

Default users PATH is changed

Open lmeinecke opened this issue 9 years ago • 4 comments

Which script is modifying the default users PATH? I noticed that non-sudo users cannot run ifconfig or any commands in /sbin. Or rather they're world executable/readable but the path isn't set correctly for the command to work in any directory other than the one they reside in.

I've got this problem on stig-fix 1.7.8 and hardening-scripts 1.0

lmeinecke avatar May 06 '15 14:05 lmeinecke

Check gen000940.sh and gen000960.sh - those controls dealt with the path.

fcaviggia avatar May 06 '15 14:05 fcaviggia

Those two scripts seem innocent enough. I've got a system running stig-fix 1.7.7 and on it the default users have :sbin: (among other dirs) in their PATH. All the newer ones do not. From a Red Hat 6 standpoint I'm not sure where the default users PATH is defined.

lmeinecke avatar May 06 '15 15:05 lmeinecke

For the default path I'd probably check in the /etc/profile or /etc/bashrc

fcaviggia avatar May 06 '15 15:05 fcaviggia

Yea, I checked those and they looked good. /etc/profile seems to be where it defines what root (0) gets and then everyone else. Checked /etc/profile.d and there were several scripts but most weren't executable. I'll post a solution if I ever find one. I'm curious if anyone else has PATH issues with this release.

lmeinecke avatar May 06 '15 17:05 lmeinecke