Checking configuration access files for an AIX server, left me wondering about this :
- If a user is added to system group, it gets gid=0 with some security risks because it gets some root kind of file access level.
- Is this insecure condition kept if the user has admin variable equal to FALSE in /etc/security/user file?
- What happen if the user is also part of security group (gid=7).
What is the resultant combination of having gid=0,7 and ADMIN=FALSE?