Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-778 | GEN000980 | SV-27143r1_rule | ECPA-1 | Medium |
Description |
---|
Limiting the root account direct logins to only system consoles protects the root account from direct unauthorized access from a non-console device. |
STIG | Date |
---|---|
SOLARIS 10 SPARC SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2016-06-22 |
Check Text ( C-28066r1_chk ) |
---|
Check the CONSOLE setting in /etc/default/login # grep CONSOLE /etc/default/login If CONSOLE is set to a value other than /dev/console, this is a finding. |
Fix Text (F-24417r1_fix) |
---|
Edit the /etc/default/login file and uncomment the line containing /dev/console if it is commented out. |