| GEN001360 - The NIS/NIS+/yp files must have mode 0755 or less permissive - '/usr/lib/nis/*' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001365 - The /etc/resolv.conf file must not have an extended ACL. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001440 - All interactive users must be assigned a home directory in the /etc/passwd file. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001500 - All interactive users' home directories must be owned by their respective users. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001570 - All files and directories contained in user home directories must not have extended ACLs. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001640 - Run control scripts must not execute world-writable programs or scripts. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001700 - System start-up files must only execute programs owned by a privileged UID or an application. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/profile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001720 - All global initialization files must have mode 0644 or less permissive - '/etc/security/.profile' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/.login' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/environment' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001760 - All global initialization files must be group-owned by sys, bin, system, or security - '/etc/.login' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001760 - All global initialization files must be group-owned by sys, bin, system, or security - '/etc/bashrc' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001760 - All global initialization files must be group-owned by sys, bin, system, or security - '/etc/csh.login' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001760 - All global initialization files must be group-owned by sys, bin, system, or security - '/etc/environment' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001810 - Skeleton files must not have extended ACLs - '/etc/security/mkuser.sys' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001870 - Local initialization files must be group-owned by the user's primary group or root - '~/.env' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001880 - All local initialization files must have mode 0740 or less permissive - '~/.bash_logout' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.bash_logout' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.emacs' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001890 - Local initialization files must not have extended ACLs - '.env' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN001940 - User start-up files must not execute world-writable programs. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - '~/shosts.equiv' - permissions | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002420 - Removable media, remote file systems and any file system not containing approved setuid files must be mounted with nosuid. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002960 - Access to the cron utility must be controlled using the cron.allow and/or cron.deny file(s) - '/var/adm/cron/cron.deny' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN002980 - The cron.allow file must have mode 0600 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'lpd' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'nobody' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003060 - Default system accounts must not be in the cron.allow file or must be in cron.deny - 'sshd' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003080 - Crontab files must have mode 0600 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003140 - Cron and crontab directories must be group-owned by system, sys, bin, or cron. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003180 - The cronlog file must have mode 0600 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003200 - The cron.deny file must have mode 0600 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003210 - The cron.deny file must not have an extended ACL. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003270 - The cron.deny file must be group-owned by system, bin, sys, or cron. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003320 - System accounts must not be listed in at.allow or must be included in at.deny - 'daemon' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003320 - System accounts must not be listed in at.allow or must be included in at.deny - 'ipsec' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003320 - System accounts must not be listed in at.allow or must be included in at.deny - 'lpd' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003320 - System accounts must not be listed in at.allow or must be included in at.deny - 'snapp' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003420 - The at directory must be owned by root, bin, sys, daemon, or cron. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003720 - The inetd.conf file, xinetd.conf file, and the xinetd.d directory must be owned by root or bin - 'xinetd.d' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003745 - The inetd.conf and xinetd.conf files must not have extended ACLs - 'inetd.conf' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003745 - The inetd.conf and xinetd.conf files must not have extended ACLs - 'xinetd.conf' | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003770 - The services file must be group-owned by bin, sys, or system. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003780 - The services file must have mode 0444 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN003920 - The hosts.lpd (or equivalent) file must be owned by root, bin, sys, or lp | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN004000 - The traceroute file must have mode 0700 or less permissive. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN004220 - Administrative accounts must not run a web browser, except as needed for local service administration. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| GEN004360 - The alias file must be owned by root. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
