TOC & Recently Viewed

Recently Viewed Topics

active_accounts_without_home_dir

This built-in function ensures that every active user (users that are not non-interactive) has a home directory. It passes if a valid directory is attributed to each user and fails otherwise. Note that home directory ownership or permissions are not tested by this check.

It is generally recommended that each active user on a system have a home directory defined as some tools may need to read from it or write to it (for instance, sendmail checks for a ~/.forward file). If an active user does not need to log in, a non-existent shell (e.g., /bin/false) should be defined instead. On many systems, an active user with no home directory will still be granted login privileges but their effective home directory is /.

Usage

<item>

name: "active_accounts_without_home_dir"

description: "This check reports active user accounts that do not have home directories."

</item>

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.