Check: GEN001360
SOLARIS 9 SPARC STIG:
GEN001360
(in version v1 r12)
Title
The NIS/NIS+/yp command files must have mode 0755 or less permissive. (Cat II impact)
Discussion
NIS/NIS+/yp files are part of the system's identification and authentication processes and are, therefore, critical to system security. Unauthorized modification of these files could compromise these processes and the system.
Check Content
Fix Text
Change the mode of NIS/NIS+/yp command files to 0755 or less permissive. Procedure: # chmod -R 0755 /usr/lib/netsvc/yp /var/yp
Additional Identifiers
Rule ID: SV-27175r1_rule
Vulnerability ID: V-791
Group Title: GEN001360
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000225 |
Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) which are necessary to accomplish assigned organizational tasks. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| AC-6 |
Least Privilege |