Detections
Analytics

1.273 RHEL-09-411045

Information

All RHEL 9 interactive users must have a primary group that exists.

GROUP ID: V-258048
RULE ID: SV-258048r1069380

If a user is assigned the Group Identifier (GID) of a group that does not exist on the system, and a group with the GID is subsequently created, the user may have unintended rights to any files associated with the group.

Solution

Configure the system so that all GIDs are referenced in "/etc/passwd" are defined in "/etc/group".

Edit the file "/etc/passwd" and ensure that every user's GID is a valid GID.

See Also

https://workbench.cisecurity.org/benchmarks/22008

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-2, CAT|II, CCI|CCI-000764, Rule-ID|SV-258048r1069380_rule, STIG-ID|RHEL-09-411045, Vuln-ID|V-258048

Plugin: Unix

Control ID: 196886536382308f080aac49fedd12032fc0dfd771993dec5ab880cd1e1cb6ad