UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

AIX passwd.nntp file must have mode 0600 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-215327 AIX7-00-003013 SV-215327r508663_rule Medium
Description
File permissions more permissive than 0600 for /etc/news/passwd.nntp may allow access to privileged information by system intruders or malicious users.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2023-08-23

Details

Check Text ( C-16525r294432_chk )
If NNTP is not being used, this is Not Applicable.

Check passwd.nntp file permissions using command:
# find / -name passwd.nntp -exec ls -lL {} \;

The above command may yield the following output:
-rw------- 1 root system 19 Oct 16 10:46 /etc/news/passwd.nntp

If a "passwd.nntp" file has a mode more permissive than "0600", this is a finding.
Fix Text (F-16523r294433_fix)
Change the mode of all the found passwd.nntp files that have mode more permissive than "0600" using command:
# chmod 0600