SV-225158r610901_rule
V-225158
SRG-OS-000109-GPOS-00056
AOSX-15-001100
CAT II
10
To ensure that "PermitRootLogin" is disabled by sshd, run the following command:
/usr/bin/sudo /usr/bin/sed -i.bak 's/^[\#]*PermitRootLogin.*/PermitRootLogin no/' /etc/ssh/sshd_config
To check if SSH has root logins enabled, run the following command:
/usr/bin/sudo /usr/bin/grep ^PermitRootLogin /etc/ssh/sshd_config
If there is no result, or the result is set to "yes", this is a finding.
V-225158
False
AOSX-15-001100
To check if SSH has root logins enabled, run the following command:
/usr/bin/sudo /usr/bin/grep ^PermitRootLogin /etc/ssh/sshd_config
If there is no result, or the result is set to "yes", this is a finding.
M
4212