ALMA-09-033130 - All AlmaLinux OS 9 interactive users must have a primary group that exists.

Information

If a user is assigned the Group Identifier (GID) of a group that does not exist on the system, and a group with the GID is subsequently created, the user may have unintended rights to any files associated with the group.

Solution

Configure the system so that all GIDs referenced in "/etc/passwd" are defined in "/etc/group".

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_CL_AlmaLinux_OS_9_V1R1_STIG.zip

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-2, CAT|II, CCI|CCI-000764, Rule-ID|SV-269366r1050249_rule, STIG-ID|ALMA-09-033130, Vuln-ID|V-269366

Plugin: Unix

Control ID: dc2e7ca6844feda46e109ad8aeca83bdb3f59e5492471fc9f9de6c8fc0a55481