Setgid files (UNIX)

Module: File Find

This check finds files that have been assigned the setgid attribute. Anyone running a setgid file is temporarily assigned the group ID of the file. While many system files depend on this attribute for proper operation, security problems can result if setgid is assigned to programs that allow reading and writing of files or escapes to shell. Enter full path names and wildcard characters in the file list to specify files and directories to be excluded from the check. For example, you would enter /etc/* to exclude all files in the /etc directory.

The following table lists the error message for the check.

Table: Error message for Setgid files

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_SETGID

Category: System Information

UNIX (5631)

Title: File is setgid

Description:The listed files have been assigned the setgid attribute. Setgid means that anyone running these files is temporarily assigned the group ID of the file. While many system files depend on this attribute for proper operation, security problems can result if setgid is assigned to programs that allow reading and writing of files or escapes to shell. You should examine the listed files for such attributes and use the chmod command to change the file setgid properties where appropriate.

Severity: green-0

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]