UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The /usr/aset/userlist file must be group-owned by root.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22600 GEN000000-SOL00250 SV-27013r1_rule ECLP-1 Medium
Description
The /usr/aset/userlist file is critical to system security and must be protected from unauthorized access.
STIG Date
SOLARIS 10 SPARC SECURITY TECHNICAL IMPLEMENTATION GUIDE 2017-06-21

Details

Check Text ( C-27947r1_chk )
Check the group ownership of the file.
# ls -lLd /usr/aset/userlist
If the group owner of the file is not root, this is a finding.
Fix Text (F-24278r1_fix)
Change the group ownership of the file.
# chgrp root /usr/aset/userlist