An error occurred:

Check: GEN000452

IRIX 6.5: GEN000452 (in versions v1 r1 through v1 r0.6)

Title

The system must display the date and time of the last successful account login upon login. (Cat III impact)

Discussion

Providing users with feedback on when account accesses last occurred facilitates user recognition and reporting of unauthorized account use.

Check Content

Determine if the system displays the date and time of the last successful login upon loggiAng in. # grep lastlog /etc/config/login.options If the "lastlog" does not exist or is commented out, this is a finding. Verify the SSH daemon is configured to display last login information. # grep -i PrintLastLog /etc/ssh/sshd_config # grep -i PrintLastLog /etc/openssh/sshd_config **Prior to IRIX 6.5.19, openssh had to be compiled and installed resulting in the configuration file located in /etc/ssh/sshd_config If PrintLastLog is present in the configuration and not disabled, this is not a finding. Otherwise, this is a finding.

Fix Text

Configure the system to display the date and time of the last successful login upon logging in. Enable PrintLastLog in the SSH daemon. To enable PrintLastLog in the SSH daemon, remove any lines disabling this option from the configuration.

Additional Identifiers

Rule ID:

Vulnerability ID: V-22299

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000052

The information system notifies the user, upon successful logon (access) to the system, of the date and time of the last logon (access).

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-9

Previous Logon (Access) Notification