Skip to content

[FAIL] 1.1.2.a Ensure /tmp is configured #76

Open
Open
[FAIL] 1.1.2.a Ensure /tmp is configured#76
@slahlou-airbox

Description

@slahlou-airbox
slahlou-airbox
opened on Feb 2, 2021

Even having the remediation implemented, we still get check failed :

./linux-bench --check="1.1.2.a,1.1.2.b"
[INFO] 1 Initial Setup
[INFO] 1.1 Filesystem Configuration
[FAIL] 1.1.2.a Ensure /tmp is configured
[FAIL] 1.1.2.b Ensure /tmp is configured

== Remediations ==
1.1.2.a Configure /etc/fstab as appropriate.
example:
tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0
OR
Run the following commands to enable systemd /tmp mounting:
systemctl unmask tmp.mount systemctl enable tmp.mount
Edit /etc/systemd/system/local-fs.target.wants/tmp.mount to configure the /tmp mount:
[Mount]
What=tmpfs
Where=/tmp
Type=tmpfs
Options=mode=1777,strictatime,noexec,nodev,nosuid

1.1.2.b Configure /etc/fstab as appropriate.
example:
tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0
OR
Run the following commands to enable systemd /tmp mounting:
systemctl unmask tmp.mount systemctl enable tmp.mount
Edit /etc/systemd/system/local-fs.target.wants/tmp.mount to configure the /tmp mount:
[Mount]
What=tmpfs
Where=/tmp
Type=tmpfs
Options=mode=1777,strictatime,noexec,nodev,nosuid

grep tmpfs /etc/fstab

tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,noexec,relatime 0 0

mount -v

tmpfs on /tmp type tmpfs (rw,nosuid,nodev,noexec,relatime)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions