Detections
Analytics
GEN002210 - All shell files must be group-owned by root, bin, sys, or system.
Information
If shell files are group-owned by users other than root or a system group, they could be modified by intruders or malicious users to perform unauthorized actions.Solution
Change the group owner of the shell to root, bin, sys, or system.# chgrp system < shell >
See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6, CAT|II, CCI|CCI-000225, Rule-ID|SV-38848r1_rule, STIG-ID|GEN002210, Vuln-ID|V-22365
Plugin: Unix
Control ID: 34a411f4510ce58adbf8324b8b060b89718c8f61401e29aaaee0de1846bb2306