STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 1 hour ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to IBM AIX 7.x Security Technical Implementation Guide

V-215183

CAT II (Medium)

All system files, programs, and directories must be owned by a system account.

Rule ID

SV-215183r991560_rule

STIG

IBM AIX 7.x Security Technical Implementation Guide

Version

V3R2

CCIs

CCI-001499

Discussion

Restricting permissions will protect the files from unauthorized modification.

Check Content

Check the ownership of system files, programs, and directories by running the following command: 
# ls -lLa /etc /bin /usr/bin /usr/lbin /usr/ucb /sbin /usr/sbin 

If any of the system files, programs, or directories are not owned by a system account, this is a finding. 

Note: For this check, the system-provided "ipsec" user is considered to be a system account.

Fix Text

Change the owner of public directories to "root" or an application account using the following command: 
# chown root </public/directory> 

Note: Replace "root" with an application user as necessary.