| GEN000402 - The DoD login banner must be displayed as part of graphical desktop environment login prompts - 'Dtlogin*greeting.labelString' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000410 - The FTPS/FTP service on the system must be configured with the DoD login banner - '/etc/ftpaccess.ctl group-owned by system' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000410 - The FTPS/FTP service on the system must be configured with the DoD login banner - '/etc/ftpaccess.ctl owned by root' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000410 - The FTPS/FTP service on the system must be configured with the DoD login banner - '/etc/ftpaccess.ctl permissions are 640' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000410 - The FTPS/FTP service on the system must be configured with the DoD login banner - '/etc/herald contains banner' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000410 - The FTPS/FTP service on the system must be configured with the DoD login banner - '/etc/herald group-owned by system' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN000945 - The root account's library search path must be the system default and must contain only absolute paths. | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN000950 - The root account's list of preloaded libraries must be empty. | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001060 - The system must log successful and unsuccessful access to the root account. | DISA STIG AIX 5.3 v1r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN001190 - All network services daemon files must not have extended ACLs - /usr/bin/* | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001320 - NIS/NIS+/yp files must be owned by root, sys, or bin - '/usr/lib/nis/*' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001340 - NIS/NIS+/yp files must be group-owned by sys, bin, other, or system - '/var/yp/*' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001360 - The NIS/NIS+/yp files must have mode 0755 or less permissive - '/var/nis/*' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001362 - The /etc/resolv.conf file must be owned by root. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001364 - The /etc/resolv.conf file must have mode 0644 or less permissive. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001368 - The /etc/hosts file must have mode 0644 or less permissive. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001371 - The /etc/nsswitch.conf file must be owned by root - Not Applicable | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001378 - The /etc/passwd file must be owned by root. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001380 - The /etc/passwd file must have mode 0644 or less permissive. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001392 - The /etc/group file must be group-owned by security, bin, sys, or system. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001500 - All interactive users' home directories must be owned by their respective users. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001550 - All files and directories in user's home directories must be group-owned by a group the home directory's owner is member. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001605 - Run control scripts' library search paths must contain only absolute paths. | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001700 - System start-up files must only execute programs owned by a privileged UID or an application. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/bashrc' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/environment' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/security/.profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/security/environ' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001740 - All global initialization files must be owned by root - '/etc/csh.login' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001740 - All global initialization files must be owned by root - '/etc/security/.profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001810 - Skeleton files must not have extended ACLs - '/etc/security/.profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001810 - Skeleton files must not have extended ACLs - '/etc/security/mkuser.sys' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001820 - All skeleton files and directories (typically in /etc/skel) must be owned by root or bin - '/etc/security/.profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001830 - All skeleton files (typically in /etc/skel) must be group-owned by security - '/etc/security/mkuser.sys' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/csh.login' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/environment' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/bashrc' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/security/environ' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001860 - All local initialization files must be owned by the user or root. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.bash_logout' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.bash_profile' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.logout' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0755 or less permissive - '~/.dt' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.bashrc' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.cshrc' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.exrc' | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001940 - User start-up files must not execute world-writable programs. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN001980 - The /etc/group file must not contain a plus (+) without defining entries for NIS+ netgroups - '/etc/group' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001980 - The shosts.equiv file must not contain a plus (+) without defining entries for NIS+ netgroups - '~/shosts.equiv' | DISA STIG AIX 5.3 v1r2 | Unix | CONFIGURATION MANAGEMENT |
