On AIX, the SSH server must not permit root logins using remote access programs.
An XCCDF Rule
Description
Permitting direct root login reduces auditable information about who ran privileged commands on the system and also allows direct attack attempts on root's password.
- ID
- SV-215287r991589_rule
- Version
- AIX7-00-002102
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Edit the "/etc/ssh/sshd_config" file to have the following line and save the change:
PermitRootLogin no
Restart SSH daemon:
# stopsrc -s sshd
# startsrc -s sshd