CCI|CCI-000197

Title

For password-based authentication, transmit passwords only cryptographically-protected channels.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows Server 2008 DC STIG v6r47
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows Server 2008 MS STIG v6r46
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows 7 STIG v1r32
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows Vista STIG v6r41
3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
4.390 - The system must be configured so that the SSH daemon is configured to only use the SSHv2 protocol.UnixTenable Fedora Linux Best Practices v2.0.0
5.3.29 Ensure SSH Protocol is set to 2UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r1
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r3
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r6
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r9
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r8
AIX7-00-001045 - IF LDAP is used, AIX LDAP client must use SSL to authenticate with LDAP server.UnixDISA STIG AIX 7.x v2r5
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r1
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r5
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r6
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r3
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r8
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - Root LoginsUnixDISA STIG AIX 7.x v2r9
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r9
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r1
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r3
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r6
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r8
AIX7-00-001124 - AIX root passwords must never be passed over a network in clear text form - SSH EnabledUnixDISA STIG AIX 7.x v2r5
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r3
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r5
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r1
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r6
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r8
AIX7-00-002058 - The AIX rexec daemon must not be running.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r3
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r5
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r6
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r8
AIX7-00-002059 - AIX telnet daemon must not be running.UnixDISA STIG AIX 7.x v2r1
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r3
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r6
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r1
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r5
AIX7-00-002060 - AIX ftpd daemon must not be running.UnixDISA STIG AIX 7.x v2r8
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commandsUnixDISA STIG AIX 7.x v2r8
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commands - rcpUnixDISA STIG AIX 7.x v2r6
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commands - rcpUnixDISA STIG AIX 7.x v2r1
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commands - rcpUnixDISA STIG AIX 7.x v2r5
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commands - rcpUnixDISA STIG AIX 7.x v2r3
AIX7-00-003005 - AIX must disable /usr/bin/rcp, /usr/bin/rlogin, /usr/bin/rsh, /usr/bin/rexec and /usr/bin/telnet commands - rexecUnixDISA STIG AIX 7.x v2r3