STIGQter STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The operating system, upon successful logon, must display to the user the date and time of the last logon (access).

DISA Rule

SV-216362r603267_rule

Vulnerability Number

V-216362

Group Title

SRG-OS-000025

Rule Version

SOL-11.1-040450

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

The root role is required for this action.

# pfedit /etc/ssh/sshd_config

Locate the line containing:

PrintLastLog no

and place a comment sign ("# ")at the beginning of the line or delete the line

# PrintLastLog no

Restart the ssh service

# pfexec svcadm restart svc:/network/ssh

Check Contents

Determine if last login will be printed for SSH users.

# grep PrintLastLog /etc/ssh/sshd_config

If PrintLastLog is found, not preceded with a "#" sign, and is set to "no", this is a finding.

PrintLastLog should either not exist (defaulting to yes) or exist and be set to yes.

Vulnerability Number

V-216362

Documentable

False

Rule Version

SOL-11.1-040450

Severity Override Guidance

Determine if last login will be printed for SSH users.

# grep PrintLastLog /etc/ssh/sshd_config

If PrintLastLog is found, not preceded with a "#" sign, and is set to "no", this is a finding.

PrintLastLog should either not exist (defaulting to yes) or exist and be set to yes.

Check Content Reference

M

Target Key

4022

Comments