Ensure no duplicate group names existID: oval:org.secpod.oval:def:70803 | Date: (C)2021-04-07 (M)2023-12-20 |
Class: COMPLIANCE | Family: unix |
Although the groupadd program will not let you create a duplicate group name, it is possible for an administrator to manually edit the /etc/group file and change the group name.
Rationale:
If a group is assigned a duplicate group name, it will create and have access to files with the first GID for that group in /etc/group . Effectively, the GID is shared, which is a security problem.