CCE-91250-1Platform: ubuntu14.04 | Date: (C)2017-03-14 (M)2022-10-10 |
Set Default Group for root Account (Scored)
The usermod command can be used to specify which group the root user belongs to. This affects permissions of files that are created by the root user.
Parameter:
Technical Mechanism:
Using GID 0 for the 'root' account helps prevent root-owned files from accidentally becoming accessible to non-privileged users.
Fix:
# usermod -g 0 root
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:33948 |