STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-216470r603267_rule
V-216470
SRG-OS-000480
SOL-11.1-090240
CAT III
10
Advise the operators to use pdfedit or other appropriate command line tools to make system changes instead of vi, emacs, or gedit.
Oracle Solaris includes administrative configuration files which use pfedit, and the solaris.admin.edit/path_to_file authorization is not recommended. Alternate commands exist which are both domain-specific and safer. For example, for the /etc/passwd, /etc/shadow, or /etc/user_attr files, use instead passwd, useradd, userdel, or usermod. For the /etc/group file, use instead groupadd, groupdel, or groupmod. For updating /etc/security/auth_attr, /etc/security/exec_attr, or /etc/security/prof_attr, the preferred command is profiles.
Ask the operators if they use vi, emacs, or gedit to make changes to system files.
If vi, emacs, or gedit are used to make changes to system files, this is a finding.
V-216470
False
SOL-11.1-090240
Ask the operators if they use vi, emacs, or gedit to make changes to system files.
If vi, emacs, or gedit are used to make changes to system files, this is a finding.
M
4022