{"description": "While the system administrator can establish secure permissions for users' .netrc files, the\nusers can easily override these.\n\nThis rule ensures every .netrc file or directory under the home directory related\nto an interactive user is not group or world accessible", "rationale": ".netrc files may contain unencrypted passwords that may be used to attack other systems.\nNote: While the complete removal of .netrc files is recommended, if any are required on the\n      system, secure permissions must be applied.", "severity": "medium", "references": {}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": "the group and world permissions are incorrect", "ocil": "To verify .netrc file in interactive user home directory is\nnot group or world accessible\", run the following command:\n<pre>$ sudo ls -lLR /home/<i>USER</i>/.netrc</pre>", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Ensure users' .netrc Files are not group or world accessible", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/accounts/accounts-session/accounts_users_netrc_file_permissions/rule.yml", "template": null}