ALMA-09-020040 - There must be no .shosts files on AlmaLinux OS 9.

Information

The .shosts files are used to configure host-based authentication for individual users or the system via SSH. Host-based authentication is not sufficient for preventing unauthorized access to the system, as it does not require interactive identification and authentication of a connection request, or for the use of two-factor authentication.

Solution

Remove any found ".shosts" files from the system.

$ rm /[path]/[to]/[file]/.shosts

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_CL_AlmaLinux_OS_9_V1R2_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-269257r1050139_rule, STIG-ID|ALMA-09-020040, Vuln-ID|V-269257

Plugin: Unix

Control ID: 1643433fe60041a671fe742804fd7b3a3ae9c85e4f040717e18729f19847d8d4