Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-791 | GEN001360 | SV-27175r1_rule | ECLP-1 | Medium |
Description |
---|
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system. |
STIG | Date |
---|---|
SOLARIS 10 SPARC SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2017-03-08 |
Check Text ( C-28139r1_chk ) |
---|
Perform the following to check NIS file mode. # ls -lRa /usr/lib/netsvc/yp /var/yp If the file's mode is more permissive than 0755, this is a finding. |
Fix Text (F-34672r1_fix) |
---|
Change the mode of NIS/NIS+/yp command files to 0755 or less permissive. Procedure: # chmod -R 0755 /usr/lib/netsvc/yp /var/yp |