Detections
Analytics
GEN001372 - The /etc/nsswitch.conf file must be group-owned by root, bin, sys, or system - Not Applicable
Information
The nsswitch.conf file (or equivalent) configures the source of a variety of system security information including account, group, and host lookups. Malicious changes could prevent the system from functioning or compromise system security.NOTE: AIX does not use the /etc/nsswitch.conf file. This check is not applicable.
Solution
Change the group owner of the /etc/nsswitch.conf file to root, bin, sys, or system.Procedure:
# chgrp system /etc/nsswitch.conf
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: ACCESS CONTROL
References: 800-53|AC-6, CAT|II, CCI|CCI-000225, Rule-ID|SV-39101r1_rule, STIG-ID|GEN001372, Vuln-ID|V-22328
Plugin: Unix
Control ID: dcb00576d974b5330d3fbabdd7a08e530edb73e42422be3c7d934ff806f46b02