Detections
Analytics
GEN000000-LNX001433 - The /etc/gshadow file must have mode 0400.
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
The /etc/gshadow file is critical to system security and must be protected from unauthorized modification. The /etc/gshadow file contains a list of system groups and hashes for group passwords.Solution
Change the mode of the /etc/gshadow file to 0400 or less permissive.# chmod 0400 /etc/gshadow
See Also
http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R17_STIG.zip
Item Details
Category: IDENTIFICATION AND AUTHENTICATION
References: 800-53|IA-5, CAT|II, CCI|CCI-000225, CSCv6|3.1, Group-ID|V-22343, Rule-ID|SV-37170r1_rule, STIG-ID|GEN000000-LNX001433
Plugin: Unix
Control ID: 25fa9b2d108620a1c8fa59a4417b240ed9367eca4671bb37390a2998d4ea1a30