The system administrator will ensure the maximum number of unsuccessful SSH login attempts is set to three, locking access to the network device.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-5613 | NET1646 | SV-5613r5_rule | ECSC-1 | Medium |
| Description |
|---|
| Setting the authentication retry to 3 or less strengthens against a Brute Force attack. |
| STIG | Date |
|---|---|
| Free Space Optics Device Security Technical Implementation Guide | 2011-10-07 |
Details
| Check Text ( C-3538r3_chk ) |
|---|
| Base Procedure: Review the configuration or have the syetem administrator verify the authentication retry is set for 3. |
| Fix Text (F-5524r2_fix) |
|---|
| Implement Secure Shell Authentication retries. |