STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

GIDs reserved for system accounts must not be assigned to non-system groups.

DISA Rule

SV-227572r603266_rule

Vulnerability Number

V-227572

Group Title

SRG-OS-000480

Rule Version

GEN000360

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Change the primary group GID numbers for non-system accounts with reserved primary group GIDs (those less or equal to 99).

# usermod -g <new_group> <user>

Check Contents

# more /etc/passwd
Confirm all accounts with a GID of 99 and below are used by a system account. If a GID reserved for system accounts (0 - 99) is used by a non-system account, this is a finding.

Vulnerability Number

V-227572

Documentable

False

Rule Version

GEN000360

Severity Override Guidance

# more /etc/passwd
Confirm all accounts with a GID of 99 and below are used by a system account. If a GID reserved for system accounts (0 - 99) is used by a non-system account, this is a finding.

Check Content Reference

Target Key

4061

GIDs reserved for system accounts must not be assigned to non-system groups.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments