GEN000000-LNX001431 - The /etc/gshadow file must be owned by root.


The /etc/gshadow file is critical to system security and must be owned by a privileged user. The /etc/gshadow file contains a list of system groups and hashes for group passwords.


Change the owner of the /etc/gshadow file to root.
# chown root /etc/gshadow

Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.