Detections
Analytics
GEN001371 - The /etc/nsswitch.conf file must be owned by root - Not Applicable
Information
The nsswitch.conf file (or equivalent) configures the source of a variety of system security information including account, group, and host lookups. Malicious changes could prevent the system from functioning or compromise system security.NOTE: AIX does not use the /etc/nsswitch.conf file. This check is not applicable.
Solution
Change the owner of the /etc/nsswitch.conf file to root.# chown root /etc/nsswitch.conf
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: ACCESS CONTROL
References: 800-53|AC-6, CAT|II, CCI|CCI-000225, Rule-ID|SV-39330r1_rule, STIG-ID|GEN001371, Vuln-ID|V-22327
Plugin: Unix
Control ID: 1105d8ee7ef20e0044bb76919c134e64096d04481a19a1d3afdfd89ae66407cb