The original prose check ignored UID 500. The associated OVAL includes UID 500, though.
Regards, -- Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc 717-267-5797 (DSN 570) leland.j.steinke.ctr@mail.mil (gov't) lsteinke@tapestrytech.com (com'l)
This is for SSG Rule "world_writable_files_system_ownership". Sorry for the oversight.
Thanks, Leland -- Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc 717-267-5797 (DSN 570) leland.j.steinke.ctr@mail.mil (gov't) lsteinke@tapestrytech.com (com'l)
-----Original Message----- From: scap-security-guide-bounces@lists.fedorahosted.org [mailto:scap- security-guide-bounces@lists.fedorahosted.org] On Behalf Of Steinke, Leland J Sr CTR DISA FSO (US) Sent: Wednesday, November 27, 2013 4:31 PM To: scap-security-guide@lists.fedorahosted.org Subject: FW: [PATCH] look for uid greater than 499, not 500
The original prose check ignored UID 500. The associated OVAL includes UID 500, though.
Regards,
Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc 717-267-5797 (DSN 570) leland.j.steinke.ctr@mail.mil (gov't) lsteinke@tapestrytech.com (com'l)
Great catch, please push!
On 11/27/2013 04:31 PM, Steinke, Leland J Sr CTR DISA FSO (US) wrote:
The original prose check ignored UID 500. The associated OVAL includes UID 500, though.
Regards,
Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc 717-267-5797 (DSN 570) leland.j.steinke.ctr@mail.mil (gov't) lsteinke@tapestrytech.com (com'l)
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
For RHEL6, I thought that system accounts were as follows:
1 - 499 => Vendor System 500 - 1000 => Local System 1001 - 65534 => Users
In this case, are we considering local system as non-system (we are, I just wanted to make sure that it was clear).
This numbering is reinforced by the SSSD default configuration.
Thanks,
Trevor
On Sat, Nov 30, 2013 at 11:44 AM, Dave Smith <anondev@scapsecurityguides.org
wrote:
Great catch, please push!
On 11/27/2013 04:31 PM, Steinke, Leland J Sr CTR DISA FSO (US) wrote:
The original prose check ignored UID 500. The associated OVAL includes UID 500, though.
Regards,
Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc717-267-5797 (DSN 570)leland.j.steinke.ctr@mail.mil (gov't)lsteinke@tapestrytech.com (com'l)
scap-security-guide mailing listscap-security-guide@lists.fedorahosted.orghttps://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
On Tuesday, December 10, 2013 09:03:42 AM Trevor Vaughan wrote:
For RHEL6, I thought that system accounts were as follows:
1 - 499 => Vendor System 500 - 1000 => Local System 1001 - 65534 => Users
Nope. The authoritative reference is /etc/logins.def. The UID_MIN is 500. I had this bumped up in F16, which RHEL7 will inherit from.
https://lists.fedoraproject.org/pipermail/devel/2011-May/151663.html
-Steve
In this case, are we considering local system as non-system (we are, I just wanted to make sure that it was clear).
This numbering is reinforced by the SSSD default configuration.
On Sat, Nov 30, 2013 at 11:44 AM, Dave Smith <anondev@scapsecurityguides.org
wrote: Great catch, please push!
On 11/27/2013 04:31 PM, Steinke, Leland J Sr CTR DISA FSO (US) wrote:
The original prose check ignored UID 500. The associated OVAL includes UID 500, though.
Regards,
Leland Steinke, Security+ DISA FSO Technical Support Contractor tapestry technologies, Inc717-267-5797 (DSN 570)leland.j.steinke.ctr@mail.mil (gov't)lsteinke@tapestrytech.com (com'l)
scap-security-guide mailing listscap-security-guide@lists.fedorahosted.orghttps://lists.fedorahosted. org/mailman/listinfo/scap-security-guide
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
scap-security-guide@lists.fedorahosted.org
-
Dave Smith -
Steinke, Leland J Sr CTR DISA DD (US) -
Steve Grubb -
Trevor Vaughan