UCF STIG Viewer Logo

The system must have USB disabled unless needed.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22578 GEN008460 SV-38833r1_rule ECSC-1 Low
Description
USB is a common computer peripheral interface. USB devices may include storage devices that could be used to install malicious software on a system or exfiltrate data.
STIG Date
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2018-09-18

Details

Check Text ( C-37092r1_chk )
AIX has server USB drivers installed, such as keyboard, mount, and mass media drivers.

Determine if the system has USB enabled.
# lsdev -C | grep usb
# lslpp -l | grep usb

If usb filesets are installed on the system, USB is enabled and this is a finding.
Fix Text (F-32361r1_fix)
Disable USB devices on the system. Use SMIT to remove the following filesets.

devices.usbif.*

# smitty remove