Check: PHTN-67-000055
VMware vSphere 6.7 Photon OS STIG:
PHTN-67-000055
(in versions v1 r6 through v1 r1)
Title
The Photon operating system must configure sshd with a specific ListenAddress. (Cat II impact)
Discussion
Without specifying a ListenAddress, sshd will listen on all interfaces. In situations with multiple interfaces, this may not be intended behavior and could lead to offering remote access on an unapproved network.
Check Content
At the command line, execute the following command: # sshd -T|&grep -i ListenAddress If the ListenAddress is not configured to the VCSA management IP, this is a finding.
Fix Text
Open /etc/ssh/sshd_config with a text editor. Ensure that the "ListenAddress" line is uncommented and set to a valid local IP: Example: ListenAddress 169.254.1.2 Replace "169.254.1.2" with the management address of the VCSA. At the command line, execute the following command: # service sshd reload
Additional Identifiers
Rule ID: SV-239126r856044_rule
Vulnerability ID: V-239126
Group Title: SRG-OS-000297-GPOS-00115
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-002314 |
The information system controls remote access methods. |
Controls
Number | Title |
---|---|
AC-17 (1) |
Automated Monitoring / Control |