Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
All system files, programs, and directories must be owned by a system account.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-91475 | AIX7-00-001018 | SV-101573r1_rule | Medium |
| Description |
|---|
| Restricting permissions will protect the files from unauthorized modification. |
| STIG | Date |
|---|---|
| IBM AIX 7.x Security Technical Implementation Guide | 2019-04-29 |
Details
| Check Text ( C-90629r1_chk ) |
|---|
| Check the ownership of system files, programs, and directories by running the following command: # ls -lLa /etc /bin /usr/bin /usr/lbin /usr/ucb /sbin /usr/sbin If any of the system files, programs, or directories are not owned by a system account, this is a finding. Note: For this check, the system-provided "ipsec" user is considered to be a system account. |
| Fix Text (F-97673r1_fix) |
|---|
| Change the owner of public directories to "root" or an application account using the following command: # chown root Note: Replace "root" with an application user as necessary. |