A system administration utility has recently been installed at the SCO Openserver (UNIX) servers of our bank. While reviewing the error log files of this utility as part of IT Audit, we have noted the following warning messages:
* Alert: /etc: File Control Database inconsistency. The File Control Database may be compromised. Run Integrity (ADM).
* Alert: Authentication database path /etc/shadow may be compromised - run integrity (ADM).
It may be noted that one of the functions performed by this utility is to copy etc/shadow file to another directory for data back-up purposes. The permissions on this directory allow the file to be viewed by non-super user IDs. We have objected to this practice.
I will appreciate if someone can guide me about the significance of the above errors.
Regards,
Amjd Malik
AVP - IT Audit
Habib Bank Ltd.