[FAIL] 1.1.2.a Ensure /tmp is configured #76

slahlou-airbox · 2021-02-02T13:00:59Z

Even having the remediation implemented, we still get check failed :

./linux-bench --check="1.1.2.a,1.1.2.b"
[INFO] 1 Initial Setup
[INFO] 1.1 Filesystem Configuration
[FAIL] 1.1.2.a Ensure /tmp is configured
[FAIL] 1.1.2.b Ensure /tmp is configured

== Remediations ==
1.1.2.a Configure /etc/fstab as appropriate.
example:
tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0
OR
Run the following commands to enable systemd /tmp mounting:
systemctl unmask tmp.mount systemctl enable tmp.mount
Edit /etc/systemd/system/local-fs.target.wants/tmp.mount to configure the /tmp mount:
[Mount]
What=tmpfs
Where=/tmp
Type=tmpfs
Options=mode=1777,strictatime,noexec,nodev,nosuid

1.1.2.b Configure /etc/fstab as appropriate.
example:
tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0
OR
Run the following commands to enable systemd /tmp mounting:
systemctl unmask tmp.mount systemctl enable tmp.mount
Edit /etc/systemd/system/local-fs.target.wants/tmp.mount to configure the /tmp mount:
[Mount]
What=tmpfs
Where=/tmp
Type=tmpfs
Options=mode=1777,strictatime,noexec,nodev,nosuid

grep tmpfs /etc/fstab

tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0

mount -v

tmpfs on /tmp type tmpfs (rw,nosuid,nodev,noexec,relatime)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FAIL] 1.1.2.a Ensure /tmp is configured #76

[FAIL] 1.1.2.a Ensure /tmp is configured #76

slahlou-airbox commented Feb 2, 2021 •

edited

Loading

[FAIL] 1.1.2.a Ensure /tmp is configured #76

[FAIL] 1.1.2.a Ensure /tmp is configured #76

Comments

slahlou-airbox commented Feb 2, 2021 • edited Loading

grep tmpfs /etc/fstab

mount -v

slahlou-airbox commented Feb 2, 2021 •

edited

Loading