I'm being asked to track world writable (ww) / "other" writable folders on Unix systems (AIX, HP-UX, Red Hat, Solaris) and I was wondering if there was any way to do this in the vulnerability management module.
This is not sticky bits. I know there are a few QIDs for sticky bits set for ww folders. That won't help.
This is also not for a specific folder or file, so finding WW folders in PATH for example won't help either.
We've considered using policy compliance, but there doesn't seem to be an easy way to do this there either and we've been given the additional requirement of tracking the status of these permissions over time, which VM remediation ticketing does fairly well.
We're also primarily concerned with remotely accessable folders/files.
Is anyone else doing this? Is it even possible?