STIGQter: STIG Summary: Solaris 11 X86 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Duplicate Group IDs (GIDs) must not exist for multiple groups.

DISA Rule

SV-216191r603268_rule

Vulnerability Number

V-216191

Group Title

SRG-OS-000480

Rule Version

SOL-11.1-070120

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

The root role is required.

Work with each respective group owner to remediate this issue and ensure that the group ownership of their files are set to an appropriate value.

Check Contents

The root role is required.

Check that group IDs are unique.

# getent group | cut -f3 -d":" | sort -n | uniq -c |\
while read x ; do
[ -z "${x}" ] && break
set - $x
if [ $1 -gt 1 ]; then
grps=`getent group | nawk -F: '($3 == n) { print $1
}' n=$2 | xargs`
echo "Duplicate GID ($2): ${grps}"
fi
done

If output is produced, this is a finding.

Vulnerability Number

V-216191

Documentable

False

Rule Version

SOL-11.1-070120

Severity Override Guidance

The root role is required.

Check that group IDs are unique.

# getent group | cut -f3 -d":" | sort -n | uniq -c |\
while read x ; do
[ -z "${x}" ] && break
set - $x
if [ $1 -gt 1 ]; then
grps=`getent group | nawk -F: '($3 == n) { print $1
}' n=$2 | xargs`
echo "Duplicate GID ($2): ${grps}"
fi
done

If output is produced, this is a finding.

Check Content Reference

M

Target Key

4021

Comments