Navigate

Check: GEN001160 M6

MACOSX 10.6: GEN001160 M6 (in version v1 r3)

Title

All files and directories must have a valid owner. (Cat II impact)

Discussion

Non-ownership files and directories may be unintentionally inherited if a user is assigned the same UID as the UID of the non-ownership files.

Check Content

Open a terminal session and enter the following command. find / -nouser Review the results. If any files do not have a valid owner, this is a finding.

Fix Text

Determine the legitimate owner of the files and use the "chown" command to set the owner and group to the correct value. If the legitimate owner cannot be determined, examine the files to determine their origin and the reason for their lack of an owner/group.

Additional Identifiers

Rule ID: SV-38181r1_rule

Vulnerability ID: V-785

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings