UCF STIG Viewer Logo

The NIS/NIS+/yp files must have mode 0755 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-791 GEN001360 SV-38781r1_rule ECLP-1 Medium
Description
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system.
STIG Date
AIX 5.3 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2014-10-03

Details

Check Text ( C-37004r1_chk )
Perform the following to check NIS file mode
# ls -lRa /var/nis /var/yp /usr/lib/nis /usr/lib/netsvc/yp
If the file's mode is more permissive than 0755, this is a finding.
Fix Text (F-945r2_fix)
Change the mode of NIS/NIS+/yp files to 0755 or less permissive.

Procedure (example):
# chmod 0755