STIG ID: SLES-15-040070 | SRG: SRG-OS-000480-GPOS-00227 | Severity: medium | CCI: | Vulnerability Id: V-234991
If local interactive users are not assigned a valid home directory, there is no place for the storage and control of files they should own.
Assign home directories to all SUSE operating system local interactive users that currently do not have a home directory assigned.
Assign a home directory to users via the usermod command:
> sudo usermod -d /home/smithj smithj
Verify SUSE operating system local interactive users on the system have a home directory assigned.
Check for missing local interactive user home directories with the following command:
> sudo pwck -r
user 'smithj': directory '/home/smithj' does not exist
Ask the System Administrator (SA) if any users found without home directories are local interactive users. If the SA is unable to provide a response, check for users with a User Identifier (UID) of 1000 or greater with the following command:
> awk -F: '($3>=1000)&&($1!="nobody"){print $1 ":" $3}' /etc/passwd
If any interactive users do not have a home directory assigned, this is a finding.