Common Controls Hub
All GIDs referenced in /etc/passwd must be defined in /etc/group
Inconsistency in GIDs between /etc/passwd and /etc/group could lead to a user having unintended rights.
Red Hat Enterprise Linux 6 Security Technical Implementation Guide
Check Text ( C-19524r377144_chk )
To ensure all GIDs referenced in /etc/passwd are defined in /etc/group, run the following command:
# pwck -r | grep 'no group'
There should be no output.
If there is output, this is a finding.
Fix Text (F-19522r377145_fix)
Add a group to the system for each GID referenced without a corresponding group.