STIGQter STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

All AIX Group Identifiers (GIDs) referenced in the /etc/passwd file must be defined in the /etc/group file.

DISA Rule

SV-215339r508663_rule

Vulnerability Number

V-215339

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

AIX7-00-003033

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Add a group to the system for each GID referenced without a corresponding group by running "mkgroup" command.

Check Contents

Verify that there are no GIDs referenced in "/etc/passwd" that are not defined in "/etc/group":

# cut -d: -f4 /etc/passwd
0
1
2
3
4
203
204

# cut -d: -f3 /etc/group
0
1
2
3
4
203
204

If there are GID's listed in the "/etc/passwd" file that are not listed in the "/etc/group" file, this is a finding.

Vulnerability Number

V-215339

Documentable

False

Rule Version

AIX7-00-003033

Severity Override Guidance

Verify that there are no GIDs referenced in "/etc/passwd" that are not defined in "/etc/group":

# cut -d: -f4 /etc/passwd
0
1
2
3
4
203
204

# cut -d: -f3 /etc/group
0
1
2
3
4
203
204

If there are GID's listed in the "/etc/passwd" file that are not listed in the "/etc/group" file, this is a finding.

Check Content Reference

M

Target Key

4012

Comments