Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-791 | GEN001360 | SV-37272r1_rule | ECLP-1 | Medium |
Description |
---|
NIS/NIS+/yp files are part of the system's identification and authentication processes and are critical to system security. Unauthorized modification of these files could compromise these processes and the system. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2016-12-16 |
Check Text ( C-35964r3_chk ) |
---|
Perform the following to check NIS file permissions. # ls -la /var/yp/* If the file's mode is more permissive than 0755, this is a finding. |
Fix Text (F-31220r1_fix) |
---|
Change the mode of NIS/NIS+/yp command files to 0755 or less permissive. Procedure (example): # chmod 0755 |