The AIX system must have no .netrc files on the system.
An XCCDF Rule
Description
Unencrypted passwords for remote FTP servers may be stored in .netrc files. Policy requires passwords be encrypted in storage and not used in access scripts.
- ID
- SV-215403r1009555_rule
- Version
- AIX7-00-003101
- Severity
- High
- References
- Updated
Remediation Templates
A Manual Procedure
Remove all ".netrc" file(s):
# find / -name .netrc -exec rm {} \;