UCF STIG Viewer Logo

The services file must be group-owned by bin, sys, or system.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22427 GEN003770 SV-39112r1_rule ECLP-1 Medium
Description
Failure to give ownership of system configuration files to root or a system group provides the designated owner and unauthorized users with the potential to change the system configuration which could weaken the system's security posture.
STIG Date
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2018-09-18

Details

Check Text ( C-38105r1_chk )
Check the group ownership of the services file.

Procedure:
# ls -lL /etc/services

If the file is not group-owned by bin, sys, or system, this is a finding.
Fix Text (F-33378r1_fix)
Change the group owner of the services file.

Procedure:
# chgrp system /etc/services