SV-50301r2_rule
V-38500
SRG-OS-999999
RHEL-06-000032
CAT II
10
If any account other than root has a UID of 0, this misconfiguration should be investigated and the accounts other than root should be removed or have their UID changed.
To list all password file entries for accounts with UID 0, run the following command:
# awk -F: '($3 == 0) {print}' /etc/passwd
This should print only one line, for the user root.
If any account other than root has a UID of 0, this is a finding.
V-38500
False
RHEL-06-000032
To list all password file entries for accounts with UID 0, run the following command:
# awk -F: '($3 == 0) {print}' /etc/passwd
This should print only one line, for the user root.
If any account other than root has a UID of 0, this is a finding.
M
2367