GEN002640 - Default system accounts must be disabled or removed - 'sys'

Information

Vendor accounts and software may contain backdoors allowing unauthorized access to the system. These backdoors are common knowledge and present a threat to system security if the account is not disabled.

Solution

Lock the default system account(s).
# passwd -l <user>

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

References: 800-53|CM-6b., 800-53|IA-5e., CAT|II, CCI|CCI-000178, CCI|CCI-000366, Rule-ID|SV-218375r603259_rule, STIG-ID|GEN002640, STIG-Legacy|SV-63809, STIG-Legacy|V-810, Vuln-ID|V-218375

Plugin: Unix

Control ID: 93256cfc5c1d4e1beaf098e3e4a83d08e73093c03c98148cc9ffdf2a811d8e9e