STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

The root account must be the only account with GID of 0.

DISA Rule

SV-226422r603265_rule

Vulnerability Number

V-226422

Group Title

SRG-OS-000480

Rule Version

GEN000000-SOL00440

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Change the default GID of non-root accounts to a valid GID other than 0.

Check Contents

Check passwd and group files for non-root user ids and group ids with a GID of 0.

# more /etc/passwd
# more /etc/group

OR

# awk -F: '$4 == 0' /etc/passwd
# awk -F: '$3 == 0' /etc/group

Confirm the only account with a group id of 0 is root.

If the root account is not the only account with GID of 0, this is a finding.

Vulnerability Number

V-226422

Documentable

False

Rule Version

GEN000000-SOL00440

Severity Override Guidance

Check passwd and group files for non-root user ids and group ids with a GID of 0.

# more /etc/passwd
# more /etc/group

OR

# awk -F: '$4 == 0' /etc/passwd
# awk -F: '$3 == 0' /etc/group

Confirm the only account with a group id of 0 is root.

If the root account is not the only account with GID of 0, this is a finding.

Check Content Reference

M

Target Key

4060

Comments