Navigate

Check: AIX7-00-002091

IBM AIX 7.x STIG: AIX7-00-002091 (in versions v3 r1 through v1 r1)

Title

The AIX /etc/group file must have mode 0644 or less permissive. (Cat II impact)

Discussion

The "/etc/group" file contains information regarding groups that are configured on the system. Protection of this file is important for system security.

Check Content

Verify the "/etc/group" file has the mode "0644" using command: # ls -l /etc/group The above command should yield the following output: -rw-r--r-- 1 root security 387 Sep 06 11:40 /etc/group If the file does not have mode "0644" or less permissive, this is a finding.

Fix Text

Change the mode of the "/etc/group" file to "0644": # chmod 0644 /etc/group

Additional Identifiers

Rule ID: SV-215282r991589_rule

Vulnerability ID: V-215282

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	Implement the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings