Detections
Analytics
GEN005521 - The SSH daemon must restrict login ability to specific users and/or groups.
Information
Restricting SSH logins to a limited group of users, such as system administrators, prevents password-guessing and other SSH attacks from reaching system accounts and other accounts not authorized for SSH access.Solution
Edit the SSH daemon configuration and add an AllowGroups directive.See Also
http://iasecontent.disa.mil/stigs/zip/U_STIG_Library_2015_07.zip
Item Details
Audit Name: DISA AIX 5.3 STIG v1r2
Category: ACCESS CONTROL
References: 800-53|AC-6, CAT|II, CCI|CCI-000225, Rule-ID|SV-26763r1_rule, STIG-ID|GEN005521, Vuln-ID|V-22470
Plugin: Unix
Control ID: 84f878ffd8b361696cf8e7960fd4dcf35ca7129263856df37c7916360ab053d2