There must be no .rhosts or hosts.equiv files on the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-39252 | SRG-OS-000248-ESXI5 | SV-51068r1_rule | High |
| Description |
|---|
| The .rhosts or hosts.equiv files are used to configure host-based authentication for individual users or the system. Host-based authentication is not sufficient for preventing unauthorized access to the system. |
| STIG | Date |
|---|---|
| VMware ESXi Server 5.0 Security Technical Implementation Guide | 2017-01-06 |
Details
| Check Text ( C-46516r4_chk ) |
|---|
| The files hosts.equiv (/etc) and .rhosts (in the user home directory) contains host/user pairs to be trusted by the local system. Locate the files: # ls -l /etc/hosts.equiv # find / | grep .rhosts or # cd # ls -l .rhosts If the hosts.equiv file or one or more .rhosts files are found, this is a finding. |
| Fix Text (F-44231r2_fix) |
|---|
| Remove the file(s): # rm -f /etc/hosts.equiv # rm -f |