Check: AIX7-00-001135
IBM AIX 7.x STIG:
AIX7-00-001135
(in versions v3 r1 through v1 r1)
Title
If SNMP service is enabled on AIX, the default SNMP password must not be used in the /etc/snmpd.conf config file. (Cat II impact)
Discussion
Use default SNMP password increases the chance of security vulnerability on SNMP service.
Check Content
Inspect "/etc/snmpd.conf" to find all the passwords that are used in the config file: # grep -v "^#" /etc/snmpd.conf | grep -E "public|private|password" If any results are returned, default passwords are being used and this is a finding.
Fix Text
Edit "/etc/snmpd.conf" config file to remove or change all the default passwords that are used in the file. Restart snmpd: # stopsrc -s snmpd # startsrc -s snmpd
Additional Identifiers
Rule ID: SV-215231r991589_rule
Vulnerability ID: V-215231
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
Implement the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |