← Back to SUSE Linux Enterprise Server 15 Security Technical Implementation Guide

V-234991

CAT II (Medium)

All SUSE operating system local interactive users must have a home directory assigned in the /etc/passwd file.

Rule ID

SV-234991r1184468_rule

STIG

SUSE Linux Enterprise Server 15 Security Technical Implementation Guide

Version

V2R7

CCIs

None

Discussion

If local interactive users are not assigned a valid home directory, there is no place for the storage and control of files they should own.

Check Content

Verify SUSE operating system local interactive users on the system have a home directory assigned.

Check for missing local interactive user home directories with the following command:

> sudo pwck -r
user 'doduser': directory '/home/doduser' does not exist

Ask the system administrator (SA) if any users found without home directories are local interactive users. If the SA is unable to provide a response, check for users with a User Identifier (UID) of 1000 or greater with the following command:

> awk -F: '($3>=1000)&&($1!="nobody"){print $1 ":" $3}' /etc/passwd

If any interactive users do not have a home directory assigned, this is a finding.

Fix Text

Assign home directories to all SUSE operating system local interactive users that currently do not have a home directory assigned.

Assign a home directory to users via the usermod command:

> sudo usermod -d /home/doduser doduser