UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

All system files, programs, and directories must be owned by a system account.


Overview

Finding ID Version Rule ID IA Controls Severity
V-215183 AIX7-00-001018 SV-215183r508663_rule Medium
Description
Restricting permissions will protect the files from unauthorized modification.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2023-08-23

Details

Check Text ( C-16381r294000_chk )
Check the ownership of system files, programs, and directories by running the following command:
# ls -lLa /etc /bin /usr/bin /usr/lbin /usr/ucb /sbin /usr/sbin

If any of the system files, programs, or directories are not owned by a system account, this is a finding.

Note: For this check, the system-provided "ipsec" user is considered to be a system account.
Fix Text (F-16379r294001_fix)
Change the owner of public directories to "root" or an application account using the following command:
# chown root

Note: Replace "root" with an application user as necessary.