User account, other than root user, with user ID set to 0 is found
Description
The user ID (UID) '0' is reserved for default root account. Root is the superuser account in Linux. It is a user account for administrative purposes, and typically has the highest access rights on the system. Configuring UID as '0' for other user account grants them root-level privileges. Therefore, it's recommended to use a UID other than '0' for user accounts other than the root user.
Severity
important
Category
Linux - User Account Management
Resolution
Follow the below steps to resolve the misconfiguration.
Remove any users other than root with UID 0 or assign them a new UID if appropriate using the following command:
usermod -u
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
