Check: GEN001000
HP-UX 11.23 STIG:
GEN001000
(in version v1 r8)
Title
Remote consoles must be disabled or protected from unauthorized access. (Cat II impact)
Discussion
The remote console feature provides an additional means of access to the system which could allow unauthorized access if not disabled or properly secured. With virtualization technologies, remote console access is essential as there is no physical console for virtual machines. Remote console access must be protected in the same manner as any other remote privileged access method.
Check Content
Check /etc/securetty # more /etc/securetty If the /etc/securetty file does not exist, or contains other than "console" or "/dev/null" this is a finding.
Fix Text
If the /etc/securetty file does not exist, create the file containing only the word console and ensure correct file properties. # echo “console” > /etc/securetty
Additional Identifiers
Rule ID: SV-27148r2_rule
Vulnerability ID: V-4298
Group Title: GEN001000
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000070 |
The organization authorizes the execution of privileged commands via remote access only for organization-defined needs. |
Controls
Number | Title |
---|---|
AC-17 (4) |
Privileged Commands / Access |