SLEM-05-255080 - SLEM 5 SSH daemon must perform strict mode checking of home directory configuration files.

Information

If other users have access to modify user-specific SSH configuration files, they may be able to log on to the system as another user.

Solution

Configure SLEM 5 SSH daemon performs strict mode checking of home directory configuration files.

Add or modify the following line in the "/etc/ssh/sshd_config" file:

StrictModes yes

Restart the SSH daemon in order for the changes to take effect:

> sudo systemctl restart sshd.service

Item Details

Audit Name: DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r4

Category: CONFIGURATION MANAGEMENT

Plugin: Unix

Control ID: 50df276342d070ebe0a4220add7e1fd213dd5298e74c2a769445bcc633481be5

Detections

Analytics

SLEM-05-255080 - SLEM 5 SSH daemon must perform strict mode checking of home directory configuration files.

Information

Solution

See Also

Item Details