Navigate

Check: UBTU-16-010710

Canonical Ubuntu STIG: UBTU-16-010710 (in versions v1 r2 through v1 r1)

Title

All files and directories must have a valid group owner. (Cat II impact)

Discussion

Files without a valid group owner may be unintentionally inherited if a group is assigned the same Group Identifier (GID) as the GID of the files without a valid group owner.

Check Content

Verify all files and directories on the Ubuntu operating system have a valid group. Check the owner of all files and directories with the following command: # sudo find / -nogroup If any files on the system do not have an assigned group, this is a finding.

Fix Text

Either remove all files and directories from the Ubuntu operating system that do not have a valid group, or assign a valid group to all files and directories on the system with the "chgrp" command: # sudo chgrp <group> <file>

Additional Identifiers

Rule ID: SV-90237r1_rule

Vulnerability ID: V-75557

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-002165	The information system enforces organization-defined discretionary access control policies over defined subjects and objects.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-3 (4)	Discretionary Access Control