STIGQter STIGQter: STIG Summary: VMware vSphere 6.7 Photon OS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021:

The Photon operating system must require users to reauthenticate for privilege escalation.

DISA Rule

SV-239136r675216_rule

Vulnerability Number

V-239136

Group Title

SRG-OS-000373-GPOS-00156

Rule Version

PHTN-67-000065

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Check the configuration of the "/etc/sudoers" and "/etc/sudoers.d/*" files with the following command:

# visudo
OR
# visudo -f /etc/sudoers.d/<file name>

Remove any occurrences of "NOPASSWD" tags associated with user accounts with a password hash.

Check Contents

At the command line, execute the following commands:

# grep -ihs nopasswd /etc/sudoers /etc/sudoers.d/*|grep -v "^#"|grep -v "^%"|awk '{print $1}'

# awk -F: '($2 != "x" && $2 != "!") {print $1}' /etc/shadow

If any account listed in the first output is also listed in the second output, this is a finding.

Vulnerability Number

V-239136

Documentable

False

Rule Version

PHTN-67-000065

Severity Override Guidance

At the command line, execute the following commands:

# grep -ihs nopasswd /etc/sudoers /etc/sudoers.d/*|grep -v "^#"|grep -v "^%"|awk '{print $1}'

# awk -F: '($2 != "x" && $2 != "!") {print $1}' /etc/shadow

If any account listed in the first output is also listed in the second output, this is a finding.

Check Content Reference

M

Target Key

5323

Comments