AnsweredAssumed Answered

Security Policies - All system's user accounts must have either /bin/false or /sbin/nologin configured in /etc/passwd file

Question asked by Jose Carlos Najera on May 21, 2014
Latest reply on May 21, 2014 by Jose Carlos Najera

Hi Qualys Community!


Is there a way I can use Qualys to scan all UNIX/Linux servers checking the /etc/passwd file in all servers and validate "X" user id that they don't have anything different to /bin/false or /sbin/nologin.  In otherwords, the "X" accounts do not have permissions in the /bin/false or /sbin/nologin.

 

According with security Policies all system’s user accounts must have either /bin/false or /sbin/nologin configured in /etc/passwd file

Outcomes