GEN000000-LNX00420 - The /etc/security/access.conf file must have a privileged group owner.

Information

Depending on the access restrictions of the /etc/access.conf file, if the group owner were not a privileged group, it could endanger system security.

Solution

Use the chgrp command to ensure the group owner is root, sys, or bin.
(for example: # chgrp root /etc/security/access.conf).

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Audit Name: DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit

Category: ACCESS CONTROL, CONFIGURATION MANAGEMENT

References: 800-53|AC-6, 800-53|CM-6b., CAT|II, CCI|CCI-000225, CCI|CCI-000366, Group-ID|V-1054, Rule-ID|SV-37227r1_rule, STIG-ID|GEN000000-LNX00420, Vuln-ID|V-1054

Plugin: Unix

Control ID: 6fae45980f992cc41b1d5d023af345e7b8dca026cf3a7308a6b6796fc0980896