Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-791 | GEN001360 | SV-38462r1_rule | ECLP-1 | Medium |
Description |
---|
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system. |
STIG | Date |
---|---|
HP-UX 11.31 Security Technical Implementation Guide | 2016-12-20 |
Check Text ( C-36305r1_chk ) |
---|
Check NIS file mode. Procedure: # grep -i NIS_DOMAIN /etc/rc.config.d/namesvrs # ls -lLa /var/yp/ If the file's mode is more permissive than 0755, this is a finding. |
Fix Text (F-31560r1_fix) |
---|
Change the mode of NIS/NIS+/yp command files to 0755 or less permissive. Procedure (example): # chmod 0755 |