STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:SV-215221r508663_rule
V-215221
SRG-OS-000074-GPOS-00042
AIX7-00-001124
CAT I
10
If OpenSSH server is not installed, install it from the from AIX DVD Volume 1 using the following command (assuming that the DVD device is /dev/cd0):
# installp -aXYgd /dev/cd0 -e /tmp/install.log openssh.base.server
Start SSH server if it is not started:
# startsrc -s sshd
Enable SSH on the system and use it for all remote connections used to attain root access.
Disable direct root remote login:
# chsec -f /etc/security/user -s root -a rlogin=false
Determine if root has logged in over an unencrypted network connection:
# last | grep "root " | egrep -v "reboot|console" | more
root pts/1 10.74.17.76 Jul 4 16:44 - 17:39 (00:54)
Next, determine if the SSH daemon is running:
# ps -ef |grep sshd
root 3670408 6029762 0 Jan 24 - 0:00 /usr/sbin/sshd
If root has logged in over the network and SSHD is not running, this is a finding.
V-215221
False
AIX7-00-001124
Determine if root has logged in over an unencrypted network connection:
# last | grep "root " | egrep -v "reboot|console" | more
root pts/1 10.74.17.76 Jul 4 16:44 - 17:39 (00:54)
Next, determine if the SSH daemon is running:
# ps -ef |grep sshd
root 3670408 6029762 0 Jan 24 - 0:00 /usr/sbin/sshd
If root has logged in over the network and SSHD is not running, this is a finding.
M
4012