| VID |
14137 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
The host system's Password policy configuration file's permission or owner is unsafe. Depending on your system, password policy configuration file is /etc/pam.d/system-auth or /etc/pam.d/common-auth (Linux), /etc/default/passwd (Solaris), /etc/security/user (AIX), /etc/default/security (HP-UX).
If normal user can write on these files, serious security problems can occur.
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Remove other user's write permissions from the file as the following
<Linux>
chmod g-w /etc/pam.d/system-auth
chmod o-w /etc/pam.d/system-auth
or
chmod g-w /etc/pam.d/common-auth
chmod o-w /etc/pam.d/common-auth
<Solaris>
chmod 444 /etc/default/passwd
<AIX>
chmod g-w /etc/security/user
chmod o-w /etc/security/user
<HP-UX>
chmod g-w /etc/default/security
chmod o-w /etc/default/security
if the owner of the file is not root, change the owner
<Linux>
chown root /etc/pam.d/system-auth
<Solaris>
chown root /etc/default/passwd
<AIX>
chown root /etc/security/user
<HP-UX>
chown root /etc/default/security |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
