Verify /etc/security/opasswd file permissionsID: oval:org.secpod.oval:def:95932 | Date: (C)2023-12-19 (M)2023-12-27 |
Class: COMPLIANCE | Family: unix |
/etc/security/opasswd and it's backup /etc/security/opasswd.old hold user's previous passwords if pam_unix or pam_pwhistory is in use on the systemRationale:It is critical to ensure that /etc/security/opasswd is protected from unauthorized access. Although it is protected by default, the file permissions could be changed either inadvertently or through malicious actions..