Check: GEN000000-SOL00140
Solaris 10 SPARC STIG:
GEN000000-SOL00140
(in versions v2 r4 through v1 r19)
Title
The /usr/aset/masters/uid_aliases must be empty. (Cat II impact)
Discussion
If uid_aliases has entries, users may not be properly identified in ASET records.
Check Content
# more /usr/aset/masters/uid_aliases If the /usr/aset/masters/uid_aliases file is not empty or all contents are not commented out, this is a finding.
Fix Text
Empty or comment out the entries in the uid_aliases file.
Additional Identifiers
Rule ID: SV-226411r603265_rule
Vulnerability ID: V-226411
Group Title: SRG-OS-000016
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000032 |
The information system enforces information flow control using organization-defined security policy filters as a basis for flow control decisions for organization-defined information flows. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AC-4 (8) |
Security Policy Filters |