UCF STIG Viewer Logo

UIDs reserved for system accounts must not be assigned to non-system accounts.


Overview

Finding ID Version Rule ID IA Controls Severity
V-11946 GEN000340 SV-12447r2_rule ECSC-1 Medium
Description
Reserved UIDs are typically used by system software packages. If non-system accounts have UIDs in this range, they may conflict with system software, possibly leading to the user having permissions to modify system files.
STIG Date
SOLARIS 9 X86 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2015-10-01

Details

Check Text ( C-29002r1_chk )
Check the UID assignments of all accounts.
# more /etc/passwd

Confirm all accounts with a UID of 99 and below are used by a system account. If a UID reserved for system accounts (0 - 99) is used by a non-system account, this is a finding.
Fix Text (F-26001r1_fix)
Change the UID numbers for non-system accounts with reserved UIDs (those less or equal to 99).