Detections
Analytics
GEN005220 - .Xauthority or X*.hosts (or equivalent) file(s) must be used to restrict access to the X server.
Information
If access to the X server is not restricted, a user's X session may be compromised.NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Create an X*.hosts file, where * is a display number that may be used to limit X window connections. Add the list of authorized X clients to the file.See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-2(1)(b), CAT|II, CCI|CCI-000297, Rule-ID|SV-12517r2_rule, STIG-ID|GEN005220, Vuln-ID|V-12016
Plugin: Unix
Control ID: ef672aa4b5d8bb5b0d7f3382ff4c51881ec4374e2077a27c86ad762855157af0