STIGQter STIGQter: STIG Summary: VMware ESXi Server 5.0 Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 27 Jan 2017: The /etc/shells (or equivalent) file must exist.

DISA Rule

SV-51091r1_rule

Vulnerability Number

V-39275

Group Title

GEN002120

Rule Version

GEN002120-ESXI5-000045

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Disable lock down mode.
Enable the ESXi Shell.
<file> = /etc/shells
Execute the following command(s):
# > /etc/shells

Re-enable lock down mode.

Check Contents

Disable lock down mode. Enable the ESXi Shell.
<file> = /etc/shells
Execute the following command(s):
# ls -l /etc/shells

If /etc/shells does not exist, this is a finding.

Re-enable lock down mode.

Vulnerability Number

V-39275

Documentable

False

Rule Version

GEN002120-ESXI5-000045

Severity Override Guidance

Disable lock down mode. Enable the ESXi Shell.
<file> = /etc/shells
Execute the following command(s):
# ls -l /etc/shells

If /etc/shells does not exist, this is a finding.

Re-enable lock down mode.

Check Content Reference

M

Target Key

2370

Comments