UCF STIG Viewer Logo

All GIDs referenced in the /etc/passwd file must be defined in the /etc/group file.


Overview

Finding ID Version Rule ID IA Controls Severity
V-227573 GEN000380 SV-227573r603266_rule Low
Description
If a user is assigned the GID of a group not existing on the system, and a group with the same GID is subsequently created, the user may have unintended rights to the group.
STIG Date
Solaris 10 X86 Security Technical Implementation Guide 2020-12-04

Details

Check Text ( C-29735r488258_chk )
Perform the following to ensure there are no GIDs referenced in /etc/passwd not defined in /etc/group.
# logins -o | awk -F: '$3 == ""'
If any lines are returned, there are GIDs referenced in /etc/passwd that are not defined in /etc/group, this is a finding.
Fix Text (F-29723r488259_fix)
Add a group to the system for each GID referenced that does not have a corresponding group.

#/usr/sbin/groupadd < group >