STIGQter STIGQter: STIG Summary: Oracle Linux 5 Security Technical Implementation Guide Version: 1 Release: 13 Benchmark Date: 26 Oct 2018: The system must not have unnecessary accounts.

DISA Rule

SV-63195r2_rule

Vulnerability Number

V-4269

Group Title

GEN000290

Rule Version

GEN000290

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Remove all unnecessary accounts from the /etc/passwd file before connecting a system to the network. Other accounts that are associated with a service not in use should also be removed.

Check Contents

Check the system for unnecessary user accounts.

Procedure:

# more /etc/passwd

Obtain a list of authorized accounts from the IAO. If any unnecessary accounts are found on the system, this is a finding.

Vulnerability Number

V-4269

Documentable

False

Rule Version

GEN000290

Severity Override Guidance

Check the system for unnecessary user accounts.

Procedure:

# more /etc/passwd

Obtain a list of authorized accounts from the IAO. If any unnecessary accounts are found on the system, this is a finding.

Check Content Reference

M

Responsibility

System Administrator

Target Key

2207

Comments