NIS maps must be protected through hard-to-guess domain names on AIX.
Overview
| Finding ID |
Version |
Rule ID |
IA Controls |
Severity |
| V-215418 |
AIX7-00-003123 |
SV-215418r991589_rule |
|
Medium |
| Description |
| The use of hard-to-guess NIS domain names provides additional protection from unauthorized access to the NIS directory information. |
Details
| Check Text (C-16616r294705_chk) |
Check the domain name for NIS maps using command:
# domainname
If no ouput is returned or the name returned is simple to guess, such as the organization name, building, or room name, etc., this is a finding. |
| Fix Text (F-16614r294706_fix) |
| Change the NIS domain name to a value difficult to guess. Consult vendor documentation for the required procedure. |