PHTN-67-000068 - The Photon operating system must use OpenSSH for remote maintenance sessions.

Information

If the remote connection is not closed and verified as closed, the session may remain open and be exploited by an attacker; this is referred to as a zombie session. Remote connections must be disconnected and verified as disconnected when nonlocal maintenance sessions have been terminated and are no longer available for use.

Satisfies: SRG-OS-000395-GPOS-00175, SRG-OS-000074-GPOS-00042, SRG-OS-000112-GPOS-00057, SRG-OS-000113-GPOS-00058, SRG-OS-000120-GPOS-00061, SRG-OS-000125-GPOS-00065, SRG-OS-000425-GPOS-00189, SRG-OS-000426-GPOS-00190

Solution

Installing openssh manually is not supported by VMware. Revert to a previous backup or redeploy the VCSA.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_6-7_Y22M04_STIG.zip

Item Details

Category: IDENTIFICATION AND AUTHENTICATION, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|IA-2(8), 800-53|IA-2(9), 800-53|IA-5(1)(c), 800-53|IA-7, 800-53|MA-4(7), 800-53|MA-4c., 800-53|SC-8(2), CAT|II, CCI|CCI-000197, CCI|CCI-000803, CCI|CCI-000877, CCI|CCI-001941, CCI|CCI-001942, CCI|CCI-002420, CCI|CCI-002422, CCI|CCI-002891, Rule-ID|SV-239139r675225_rule, STIG-ID|PHTN-67-000068, Vuln-ID|V-239139

Plugin: Unix

Control ID: 480170fd3ebae577dea512560e60f9fec587d71497b7c89a9c48adc811a25a66