GEN000000-LNX001476 - The /etc/gshadow file must not contain any group password hashes.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Group passwords are typically shared and should not be used.

Solution

Edit /etc/gshadow and change the password field to an exclamation point (!) to lock the group password.

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R17_STIG.zip

Item Details

Audit Name: DISA STIG for Red Hat Enterprise Linux 5 v1r17 Audit

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5, CAT|II, CCI|CCI-000366, Group-ID|V-22349, Rule-ID|SV-37386r1_rule, STIG-ID|GEN000000-LNX001476

Plugin: Unix

Control ID: d281b7db5b619c290a8947e3830f63c790239ac6d2f7accdc470553734f63bc4