Detections
Analytics
6.3 Disable 'nobody' Access for RPC Encryption Key Storage Service - Check if 'ENABLE_NOBODY_KEYS' is set to NO.
Information
Level: 1Solution
Perform the following to implement the recommended state-cd /etc/default
awk '/ENABLE_NOBODY_KEYS=/ { $1 = 'ENABLE_NOBODY_KEYS=NO' } { print }' keyserv >keyserv.new
mv keyserv.new keyserv
pkgchk -f -n -p /etc/default/keyserv
See Also
https://benchmarks.cisecurity.org/tools2/solaris/CIS_Oracle_Solaris_10_Benchmark_v5.2.0.pdf
Item Details
Audit Name: CIS Solaris 10 v5.2
Category: CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
References: 800-53|CM-6, 800-53|SC-12
Plugin: Unix
Control ID: ffb9e32aa1e1ad9dfb141d13180b6beabc92cf8790e59b23370f50c11cdbafbd