Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"User Initialization Files Must Be Owned By the Primary User" failing on some Ubuntu 22.04 LTS #12322

Open
huornlmj opened this issue Aug 21, 2024 · 3 comments
Open

"User Initialization Files Must Be Owned By the Primary User" failing on some Ubuntu 22.04 LTS #12322

huornlmj opened this issue Aug 21, 2024 · 3 comments
Assignees
@dodys
Labels
CIS CIS Benchmark related. Ubuntu Ubuntu product related.

Comments

@huornlmj
Copy link

huornlmj commented Aug 21, 2024
edited
Loading

Description of problem:

"User Initialization Files Must Be Owned By the Primary User" failing for no reason on Ubuntu 22.04 LTS.

SCAP Security Guide Version:

0.1.74

Operating System Version:

Ubuntu 22.04 LTS

Steps to Reproduce:

  1. Scan Ubuntu 22.04 LTS with CIS Ubuntu 22.04 Level 1 Server Benchmark profile.
  2. Review the "User Initialization Files Must Be Owned By the Primary User" result as a fail in certain unknown conditions.

Actual Results:

image

Expected Results:

image

Additional Information/Debugging Steps:

I believe that the fail might be because of only one file found with UID and GID of 0, but it appears that the remainder of the output is also suggesting a fail even when the other files are UID and GID 1000, matching the user.
@dodys dodys added Ubuntu Ubuntu product related. CIS CIS Benchmark related. labels Sep 2, 2024
@dodys dodys self-assigned this Sep 2, 2024
@dodys
Copy link
Contributor

dodys commented Sep 2, 2024

@huornlmj what is the CIS item number for this rule?

@huornlmj
Copy link
Author

huornlmj commented Sep 2, 2024

I don't know where to get the item number from , but it's Rule ID: xccdf_org.ssgproject.content_rule_accounts_user_dot_user_ownership
References are:
References: CCI-000366, SRG-OS-000480-GPOS-00227, 6.2.17, R50

@dodys
Copy link
Contributor

dodys commented Sep 2, 2024
edited
Loading

Yes, it is failing because of that .file.txt.swp file.
If you remove it or change its permissions, it should pass.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dodys dodys

Labels
CIS CIS Benchmark related. Ubuntu Ubuntu product related.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dodys @huornlmj