Navigate

Check: AIX7-00-001135

IBM AIX 7.x STIG: AIX7-00-001135 (in versions v2 r9 through v1 r1)

Title

If SNMP service is enabled on AIX, the default SNMP password must not be used in the /etc/snmpd.conf config file. (Cat II impact)

Discussion

Use default SNMP password increases the chance of security vulnerability on SNMP service.

Check Content

Inspect "/etc/snmpd.conf" to find all the passwords that are used in the config file: # grep -v "^#" /etc/snmpd.conf | grep -E "public|private|password" If any results are returned, default passwords are being used and this is a finding.

Fix Text

Edit "/etc/snmpd.conf" config file to remove or change all the default passwords that are used in the file. Restart snmpd: # stopsrc -s snmpd # startsrc -s snmpd

Additional Identifiers

Rule ID: SV-215231r508663_rule

Vulnerability ID: V-215231

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings