The system must use secure protocols for virtual serial port access.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-39503 | ESXI5-VM-000049 | SV-51361r1_rule | Medium |
| Description |
|---|
| Serial ports are interfaces for connecting peripherals to the virtual machine. They are often used on physical systems to provide a direct, low-level connection to the console of a server, and a virtual serial port allows for the same access to a virtual machine. Serial ports allow for low-level access, which often does not have strong controls like logging or privileges. |
| STIG | Date |
|---|---|
| VMware ESXi Version 5 Virtual Machine Security Technical Implementation Guide | 2017-07-11 |
Details
| Check Text ( C-46763r1_chk ) |
|---|
| Ask the SA if a secure protocol like SSH or Telnets (Telnet with SSL) as opposed to Telnet to access virtual serial ports. Note that SSH is preferred to Telnets. If Telnet is used, this is a finding. |
| Fix Text (F-44515r1_fix) |
|---|
| Use a secure protocol like SSH or Telnets (Telnet with SSL) as opposed to Telnet to access virtual serial ports. Note that SSH is preferred to Telnets. |