Check: GEN000380
VMware ESX 3 Server:
GEN000380
(in version v1 r2)
Title
All GIDs referenced in the /etc/passwd file must be defined in the /etc/group file. (Cat III impact)
Discussion
If a user is assigned the GID of a group not existing on the system, and a group with that GID is subsequently created, the user may have unintended rights to that group.
Check Content
List the primary group GIDs for all user accounts on the system. If these GIDs do not correspond to any groups defined on the system, this is a finding.
Fix Text
Add a group to the system for each GID referenced without a corresponding group.
Additional Identifiers
Rule ID: SV-781r2_rule
Vulnerability ID: V-781
Group Title: GEN000380
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |