UCF STIG Viewer Logo

The SSH daemon must not permit user environment settings.


Overview

Finding ID Version Rule ID IA Controls Severity
V-208928 OL6-00-000241 SV-208928r793714_rule Low
Description
SSH environment options potentially allow users to bypass access restriction in some configurations.
STIG Date
Oracle Linux 6 Security Technical Implementation Guide 2021-12-03

Details

Check Text ( C-9181r357764_chk )
To ensure users are not able to present environment daemons, run the following command:

# grep PermitUserEnvironment /etc/ssh/sshd_config

If properly configured, output should be:

PermitUserEnvironment no

If it is not, this is a finding.
Fix Text (F-9181r357765_fix)
To ensure users are not able to present environment options to the SSH daemon, add or correct the following line in "/etc/ssh/sshd_config":

PermitUserEnvironment no