Check: GEN003760
Solaris 10 SPARC STIG:
GEN003760
(in versions v2 r4 through v1 r19)
Title
The services file must be owned by root or bin. (Cat II impact)
Discussion
Failure to give ownership of sensitive files or utilities to root or bin provides the designated owner and unauthorized users with the potential to access sensitive information or change the system configuration which could weaken the system's security posture.
Check Content
Check the ownership of the services file. Procedure: # ls -lL /etc/services If the services file is not owned by root or bin, this is a finding.
Fix Text
Change the ownership of the services file to root or bin. Procedure: # chown root /etc/services
Additional Identifiers
Rule ID: SV-226911r854431_rule
Vulnerability ID: V-226911
Group Title: SRG-OS-000312
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-002165 |
The information system enforces organization-defined discretionary access control policies over defined subjects and objects. |
Controls
Number | Title |
---|---|
AC-3 (4) |
Discretionary Access Control |