Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-791 | GEN001360 | SV-791r2_rule | ECLP-1 | Medium |
Description |
---|
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system. |
STIG | Date |
---|---|
VMware ESX 3 Server | 2016-05-13 |
Check Text ( C-8013r2_chk ) |
---|
Check the mode of the NIS/NIS+/yp files. Consult vendor documentation to determine the location of these files. Procedure (example): # ls -lL /path/to/file If any such file has a mode more permissive than 0755, this is a finding. |
Fix Text (F-945r2_fix) |
---|
Change the mode of NIS/NIS+/yp files to 0755 or less permissive. Procedure (example): # chmod 0755 |