STIGQter: STIG Summary: VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

The SLES for vRealize must control remote access methods.

DISA Rule

SV-99305r1_rule

Vulnerability Number

V-88655

Group Title

SRG-OS-000297-GPOS-00115

Rule Version

VROM-SL-000950

Severity

CAT II

CCI(s)

• CCI-002314 - The information system controls remote access methods.

Weight

10

Fix Recommendation

Edit the SSH daemon configuration with the following command:

# sed -i "/^[^#]ListenAddress/ c\ListenAddress = 0.0.0.0" /etc/ssh/sshd_config

Replace "0.0.0.0" with the listening network addresses designated for management traffic.

Check Contents

Check the SSH daemon configuration for listening network addresses:

# grep -i Listen /etc/ssh/sshd_config | grep -v '^#'

If no configuration is returned, or if a returned "Listen" configuration contains addresses not designated for management traffic, this is a finding.

Vulnerability Number

V-88655

Documentable

False

Rule Version

VROM-SL-000950

Severity Override Guidance

Check the SSH daemon configuration for listening network addresses:

# grep -i Listen /etc/ssh/sshd_config | grep -v '^#'

If no configuration is returned, or if a returned "Listen" configuration contains addresses not designated for management traffic, this is a finding.

Check Content Reference

M

Target Key

3461

Comments