| GEN000920 - The root account's home directory (other than /) must have mode 0700. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001280 - Manual page files must have mode 0644 or less permissive - '/usr/share/info/*' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001320 - NIS/NIS+/yp files must be owned by root, sys, or bin - '/var/nis/*' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001340 - NIS/NIS+/yp files must be group-owned by sys, bin, other, or system - '/usr/lib/netsvc/yp/*' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001340 - NIS/NIS+/yp files must be group-owned by sys, bin, other, or system - '/usr/lib/nis/*' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001361 - NIS/NIS+/yp command files must not have extended ACLs - '/var/yp' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001369 - The /etc/hosts file must not have an extended ACL. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001380 - The /etc/passwd file must have mode 0644 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001391 - The /etc/group file must be owned by root. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001460 - All interactive user home directories defined in the /etc/passwd file must exist. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001660 - All system start-up files must be owned by root. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001680 - All system start-up files must be group-owned by sys, bin, other, or system. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/bashrc' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/security/environ' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001740 - All global initialization files must be owned by root - '/etc/.login' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001740 - All global initialization files must be owned by root - '/etc/environment' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001830 - All skeleton files (typically in /etc/skel) must be group-owned by security - '/etc/security/.profile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.bashrc' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.exrc' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.profile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.env' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.login' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.profile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.cshrc' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.dispatch' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.dtprofile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - '~/.rhosts' - user | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - '~/.shosts' - permissions | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - '~/.shosts' - user | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002210 - All shell files must be group-owned by root, bin, sys, or system. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002230 - All shell files must not have extended ACLs. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002990 - The cron.allow file must not have an extended ACL. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003050 - Crontab files must be group-owned by system, cron, or the crontab creator's primary group. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'adm' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'bin' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'esaadmin' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN005100 - The TFTP daemon must have mode 0755 or less permissive. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN005120 - The TFTP daemon must be configured to vendor specifications, including a dedicated TFTP user account, a non-login shell. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006100 - The /etc/samba/smb.conf file must be owned by root. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006180 - The smbpasswd file must be group-owned by root - '/etc/samba/passdb.tdb' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006180 - The smbpasswd file must be group-owned by root - '/etc/samba/secrets.tdb' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006260 - The /etc/news/incoming.conf (or equivalent) must have mode 0600 or less permissive | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006270 - The /etc/news/incoming.conf file must not have an extended ACL. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN006290 - The /etc/news/hosts.nntp.nolimit file must not have an extended ACL. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008140 - If using LDAP for auth or acct information, the TLS certificate auth file and dir must be owned by root - '/etc/ssl/ca.cert' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008160 - Using LDAP for auth or acct info, the TLS cert file and dir must be group-owned by root,bin,sys,or system - '/etc/ssl/certs' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008160 - Using LDAP for auth or acct info, the TLS cert file and dir must be group-owned by root,bin,sys,or system - /etc/ssl/ca.cert | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008180 - If using LDAP for auth or account info, the TLS cert file and dir must have mode 0755 or less permissive - '/etc/ssl/' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008260 - If using LDAP for auth or acct info, the TLS cert must have mode 0644 or less permissive - '/etc/openldap/cacerts/cert.pem' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN008320 - If using LDAP for auth or acct info, the LDAP TLS key file must be group-owned by root - '/etc/openldap/cacerts/key.pem' | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
