Rule ID
SV-44825r1_rule
Version
V1R12
CCIs
Reserved UIDs are typically used by system software packages. If non-system accounts have UIDs in this range, they may conflict with system software, possibly leading to the user having permissions to modify system files.
Check the UID assignments for all accounts.
# awk -F: '$3 <= 499 {printf "%15s:%4s\n", $1, $3}' /etc/passwd | sort -n -t: -k2
Confirm all accounts with a UID of 499 and below are used by a system account. If a UID reserved for system accounts (0 - 499) is used by a non-system account, then this is a finding.Change the UID numbers for non-system accounts with reserved UIDs (those less or equal to 499).