UCF STIG Viewer Logo

The system must prevent the root account from directly logging in except from the system console.


Overview

Finding ID Version Rule ID IA Controls Severity
V-778 GEN000980 SV-38453r2_rule ECSD-2 ECPA-1 Medium
Description
Limiting the root account direct logins to only system consoles protects the root account from direct unauthorized access from a non-console device.
STIG Date
HP-UX 11.23 Security Technical Implementation Guide 2015-12-02

Details

Check Text ( C-36276r2_chk )
Check the /etc/securetty file contents.
# more /etc/securetty
If /etc/securetty does not exist, or has contents other than console or /dev/null, this is a finding.
Fix Text (F-31533r3_fix)
If the /etc/securetty file does not exist, create the file containing only the word console and ensure correct file properties.
# echo “console” > /etc/securetty