An error occurred:

Check: SLES-12-030150

SLES 12 STIG: SLES-12-030150 (in versions v2 r13 through v1 r4)

Title

The SUSE operating system must not allow automatic logon via SSH. (Cat I impact)

Discussion

Failure to restrict system access via SSH to authenticated users negatively impacts SUSE operating system security.

Check Content

Verify the SUSE operating system disables automatic logon via SSH. Check that automatic logon via SSH is disabled with the following command: # sudo grep -i "permitemptypasswords" /etc/ssh/sshd_config PermitEmptyPasswords no If "PermitEmptyPasswords" is not set to "no", is missing completely, or is commented out, this is a finding.

Fix Text

Configure the SUSE operating system disables automatic logon via SSH. Add or edit the following line in the "/etc/ssh/sshd_config" file: PermitEmptyPasswords no

Additional Identifiers

Rule ID: SV-217268r877377_rule

Vulnerability ID: V-217268

Group Title: SRG-OS-000480-GPOS-00229

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000366

The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-6

Configuration Settings