Skip to content
Snippets Groups Projects
Commit 5cbf37fbfc7c authored by jfp's avatar jfp
Browse files

Update rule0101

parent 24e85e972d75
Branches
No related tags found
No related merge requests found
......@@ -15,9 +15,9 @@
def rule0101(fo, ftm):
"""Improper system-level account access restrictions
The following system-level accounts do not have account restrictions defined.
Improper configuration of access restrictions could result in the compromise of
the operating system environment, and compromise the confidentiality of customer data"""
Any accounts determined as system-level accounts (group value less than
or equal to the SYSGEN parameter MAXSYSGROUP) that do not have account
access denied for dialup and remote access will be listed"""
maxsysgroup = lib.getsyi(syidef.SYI__MAXSYSGROUP)[1]
all_users = user.all_users()
......@@ -27,7 +27,8 @@
print('=========', file=fo)
for u in list(all_users.values()):
if (u.uic_group <= maxsysgroup) and (
u.dialup_access_p != '\xff\xff\xff'
u.dialup_access_p != b'\xff\xff\xff'
or u.remote_access_p != b'\xff\xff\xff'
):
if ftm:
print(
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment