Detections
Analytics

1.7.9 Ensure access to sshd warning banner is configured

Information

The sshd warning banner must be sent to the remote user before authentication is permitted.

If the sshd warning banner file does not have the correct access configured, it could be modified by unauthorized users with incorrect or misleading information.

Solution

Run the following commands to set mode, owner, and group on the appropriate sshd warning banner file:

# chown root:root </path/to/sshd_banner>
# chmod u-x,go-wx </path/to/sshd_banner>

See Also

https://workbench.cisecurity.org/benchmarks/26236

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-8a.

Plugin: Unix

Control ID: c4a3576efdfa75ebf0eb323d6db09d685d9efb32cdd0c198dca843eeabbfc962