There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the AIX system.
An XCCDF Rule
Description
Trust files are convenient, but when used in conjunction with the remote login services, they can allow unauthenticated access to a system.
- ID
- SV-215432r991591_rule
- Version
- AIX7-00-003138
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Remove the ".rhosts", ".shosts", "hosts.equiv", and/or "shosts.equiv" files.