GEN000000-HPUX0080 - The HP-UX /etc/securetty must be group-owned by root, sys, or bin

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Root, sys, and bin are the most privileged group accounts, by default, for most UNIX systems. If a file as sensitive as /etc/securetty is not group-owned by a privileged group, it could lead to system compromise.

Solution

Change the group-owner of the /etc/securetty to root, bin, or sys.
Example:
# chgrp root /etc/securetty

See Also

https://iasecontent.disa.mil/stigs/zip/U_HPUX_11-31_V1R19_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, CAT|II, CCI|CCI-000225, CCI|CCI-000366, CSCv6|3.1, Rule-ID|SV-965r2_rule, STIG-ID|GEN000000-HPUX0080, Vuln-ID|V-965

Plugin: Unix

Control ID: 6beaf6f179bcb204a3a0a94cb8df2c6dc83885938a6a94aa8f77c519677fa30c