UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The NIS/NIS+/yp command files must have mode 0755 or less permissive.


Overview

Finding ID Version Rule ID IA Controls Severity
V-791 GEN001360 SV-27175r1_rule ECLP-1 Medium
Description
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system.
STIG Date
SOLARIS 10 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2018-04-10

Details

Check Text ( C-28139r1_chk )
Perform the following to check NIS file mode.
# ls -lRa /usr/lib/netsvc/yp /var/yp
If the file's mode is more permissive than 0755, this is a finding.
Fix Text (F-34672r1_fix)
Change the mode of NIS/NIS+/yp command files to 0755 or less permissive.

Procedure:
# chmod -R 0755 /usr/lib/netsvc/yp /var/yp