Skip to content

All GIDs referenced in /etc/passwd must be defined in /etc/group

An XCCDF Rule

Description

Add a group to the system for each GID referenced without a corresponding group.

Rationale

If a user is assigned the Group Identifier (GID) of a group not existing on the system, and a group with the Group Identifier (GID) is subsequently created, the user may have unintended rights to any files associated with the group.

ID
xccdf_org.ssgproject.content_rule_gid_passwd_group_same
Severity
Low
References
Updated