300c9f8c1b
This patch checks for accounts with UID 0 that aren't root. Implements: blueprint security-rhel7-stig Change-Id: I983b4ba3fcd311af72bc7165bd90862cb77de1f8
13 lines
369 B
ReStructuredText
13 lines
369 B
ReStructuredText
---
|
|
id: RHEL-07-020310
|
|
status: implemented
|
|
tag: auth
|
|
---
|
|
|
|
If an account with UID 0 other than ``root`` exists on the system, the playbook
|
|
will fail with an error message that includes the other accounts which have a
|
|
UID of 0.
|
|
|
|
Deployers are strongly urged to keep only one account with UID 0, ``root``, and
|
|
to use ``sudo`` any situations where root access is required.
|