← Rules Catalog
mediumfilesystem
filesystem-mount-tmp-nodevMount /tmp with nodev
The /tmp filesystem must be mounted with the nodev option so device files cannot be created in a world-writable directory.
filesystemmounttmp
Frameworks satisfied
- DISA STIG
- rhel9: RHEL-09-231045 · V-257889 · CAT II
- NIST 800-53
- CM-6SC-7
- CIS Benchmark
- 1.1.2.2
Platforms
rhel 9+
Check
mount_option_present/tmp nodev
Remediation
mount_option_setAdd nodev to the /tmp entrypersisted to /etc/fstab