The TOSS 5 /etc/passwd file must have mode 0644 or less permissive to prevent unauthorized access.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-282648TOSS-05-000152SV-282648r1201583_ruleCCI-000366medium
Description
If the "/etc/passwd" file is writable by a group owner or the world, it increases the risk of compromise. The file contains the list of accounts on the system and associated information, and protection of this file is critical for system security.
STIGDate
Tri-Lab Operating System Stack (TOSS) 5 Security Technical Implementation Guide2026-04-01

Details

Check Text (C-282648r1201583_chk)

Verify the "/etc/passwd" file has mode "0644" or less permissive using the following command: $ sudo stat -c "%a %n" /etc/passwd 644 /etc/passwd If a value of "0644" or less permissive is not returned, this is a finding.

Fix Text (F-87114r1200923_fix)

Change the mode of the file "/etc/passwd" to "0644" using the following command: $ sudo chmod 0644 /etc/passwd