Check: GEN000020
VMware ESX 3 Server:
GEN000020
(in version v1 r2)
Title
The system must require authentication upon booting into single-user and maintenance modes. (Cat II impact)
Discussion
If the system does not require valid root authentication before it boots into single-user or maintenance mode, anyone who invokes single-user or maintenance mode is granted privileged access to all files on the system.
Check Content
Check if the system requires a password when booted into single user mode. If it does not, this is a finding.
Fix Text
Configure the system to require a password upon booting into single user mode.
Additional Identifiers
Rule ID: SV-756r2_rule
Vulnerability ID: V-756
Group Title: GEN000020
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
Controls
Number | Title |
---|---|
AC-3 |
Access Enforcement |