Skip to content

Verify User Who Owns group File

An XCCDF Rule

Description

To properly set the owner of /etc/group, run the command:

$ sudo chown root /etc/group 

Rationale

The /etc/group file contains information regarding groups that are configured on the system. Protection of this file is important for system security.

ID
xccdf_org.ssgproject.content_rule_file_owner_etc_group
Severity
Medium
References
Updated



Remediation - Ansible

- name: Test for existence /etc/group
  stat:
    path: /etc/group
  register: file_exists
  tags:
  - CCE-91665-0

Remediation - Shell Script

chown 0 /etc/group