IT Best Practices Tip: nist_V-38451
Severity: medium
Short Description
The /etc/passwd file must be group-owned by root.
Long Description
The "/etc/passwd" file contains information about the users that are configured on the system. Protection of this file is critical for system security.
How to Check Correct Configuration
To check the group ownership of "/etc/passwd", run the command:
$ ls -l /etc/passwd
If properly configured, the output should indicate the following group-owner. "root"
If it does not, this is a finding.
How to Fix
To properly set the group owner of "/etc/passwd", run the command:
# chgrp root /etc/passwd