Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-762 | GEN000320 | SV-27067r1_rule | IAIA-1 IAIA-2 | Medium |
Description |
---|
Accounts that share a UID have full access to each others' files. This has the same effect as sharing a login. There is no way to assure identification, authentication, and accountability because the system sees them as the same user. If the duplicate UID is 0, this gives potential intruders another privileged account to attack. |
STIG | Date |
---|---|
Draft AIX Security Technical Implementation Guide | 2011-08-17 |
Check Text ( C-27984r1_chk ) |
---|
Perform the following to ensure there are no duplicate UIDs: # usrck -n ALL If any duplicate UIDs are found, this is a finding. |
Fix Text (F-24344r1_fix) |
---|
Edit user accounts to provide unique UIDs for each account. |