STIGQter STIGQter: STIG Summary: Solaris 10 X86 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

All interactive user home directories defined in the /etc/passwd file must exist.

DISA Rule

SV-227653r603266_rule

Vulnerability Number

V-227653

Group Title

SRG-OS-000480

Rule Version

GEN001460

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

If a user has no home directory, determine why. If possible, delete accounts that have no home directory. If the account is valid, then create the home directory using the appropriate system administration utility or manually.

For instance: mkdir directoryname; copy the skeleton files into the directory; chown accountname for the new directory and the skeleton files. Document all changes.

Update the sixth field in the /etc/passwd file to reflect the user's home directory.
# usermod -d
OR
# vi /etc/passwd

Check Contents

Use pwck to verify assigned home directories exist.
# pwck
If any user's assigned home directory does not exist, this is a finding.

Vulnerability Number

V-227653

Documentable

False

Rule Version

GEN001460

Severity Override Guidance

Use pwck to verify assigned home directories exist.
# pwck
If any user's assigned home directory does not exist, this is a finding.

Check Content Reference

M

Target Key

4061

Comments