STIGQter: STIG Summary: VMware ESX 3 Server Version: 1 Release: 2 Benchmark Date: 22 Jul 2016: Group Identifiers (GIDs) reserved for system accounts must not be assigned to non-system groups.

DISA Rule

SV-780r2_rule

Vulnerability Number

V-780

Group Title

GEN000360

Rule Version

GEN000360

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Change the primary group GID numbers for non-system accounts with reserved primary group GIDs (those less or equal to 99 in general, or 499 for Linux).

Check Contents

# more /etc/passwd

Confirm all accounts with a GID of 99 and below (499 and below for Linux) are used by a system account.

If a GID reserved for system accounts, 0 - 99 (0 - 499 for Linux), is used by a non-system account, this is a finding.

Vulnerability Number

V-780

Documentable

False

Rule Version

GEN000360

Severity Override Guidance

Check Content Reference

Responsibility

System Administrator

Target Key

1386

STIGQter: STIG Summary: VMware ESX 3 Server Version: 1 Release: 2 Benchmark Date: 22 Jul 2016: Group Identifiers (GIDs) reserved for system accounts must not be assigned to non-system groups.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Responsibility

Target Key

Comments