GEN001100 - Root passwords must never be passed over a network in clear text form - 'root has logged in over a network'

Information

If a user accesses the root account (or any account) using an unencrypted connection, the password is passed over the network in clear text form and is subject to interception and misuse. This is true even if recommended procedures are followed by logging on to a named account and using the su command to access root.

Solution

Install OpenSSH from AIX installation media or AIX Expansion Pack.
#smitty installp
Enable SSH on the system and use it for all remote connections used to attain root access.
Disable direct root login.
# chsec -f /etc/security/user -s root -a rlogin=false

See Also

http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(c), CAT|I, CCI|CCI-000197, Rule-ID|SV-39097r1_rule, STIG-ID|GEN001100, Vuln-ID|V-1046

Plugin: Unix

Control ID: b2a8c9b5b350594d3d5ef058a54ef06cf2730651f1269dda401d644077bed106