Detections
Analytics
SLES-12-030151 - The SUSE operating system must not allow users to override SSH environment variables.
Information
SSH environment options potentially allow users to bypass access restriction in some configurations.Solution
Configure the SUSE operating system disables unattended logon via SSH.Add or edit the following lines in the '/etc/ssh/sshd_config' file:
PermitUserEnvironment no
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SLES_12_V3R4_STIG.zip
Item Details
Audit Name: DISA SLES 12 STIG v3r4
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-217269r991591_rule, STIG-ID|SLES-12-030151, STIG-Legacy|SV-108115, STIG-Legacy|V-99011, Vuln-ID|V-217269
Plugin: Unix
Control ID: 7f403a080d41ddfc683e2165f5fd19c5a210149fd40d904583e701c6d6543768