Check: PHTN-67-000035
VMware vSphere 6.7 Photon OS STIG:
PHTN-67-000035
(in versions v1 r6 through v1 r1)
Title
The Photon operating system must configure sshd to disallow root logins. (Cat II impact)
Discussion
Logging on with a user-specific account provides individual accountability for actions performed on the system. Users must log in with their individual accounts and elevate to root as necessary. Disallowing root SSH login also reduces the distribution of the root password to users who may not otherwise need that level of privilege.
Check Content
At the command line, execute the following command: # sshd -T|&grep -i PermitRootLogin Expected result: permitrootlogin no If the output does not match the expected result, this is a finding.
Fix Text
Open /etc/ssh/sshd_config with a text editor and ensure that the "PermitRootLogin" line is uncommented and set to the following: PermitRootLogin no At the command line, execute the following command: # service sshd reload
Additional Identifiers
Rule ID: SV-239107r675129_rule
Vulnerability ID: V-239107
Group Title: SRG-OS-000109-GPOS-00056
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000770 |
The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed. |
Controls
Number | Title |
---|---|
IA-2 (5) |
Group Authentication |