Navigate

Check: GEN002200 M6

MACOSX 10.6: GEN002200 M6 (in version v1 r3)

Title

All shell files must be owned by root. (Cat II impact)

Discussion

If shell files are owned by users other than root or bin, they could be modified by intruders or malicious users to perform unauthorized actions.

Check Content

Open a terminal session and enter the following command to verify the ownership of the system shell files. cat /etc/shells | xargs -n1 ls -lL If any shell file is not owned by root, this is a finding.

Fix Text

Open a terminal session and enter the following command to change the ownership of the shell file with incorrect ownership. chown root <shell>

Additional Identifiers

Rule ID: SV-38014r1_rule

Vulnerability ID: V-921

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000225	The organization employs the concept of least privilege, allowing only authorized accesses for users (and processes acting on behalf of users) which are necessary to accomplish assigned tasks in accordance with organizational missions and business functions.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-6	Least Privilege