User .netrc files must not exist.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>The .netrc file presents a significant security risk since it stores passwords in unencrypted form.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-216195r959010_rule
Severity: Medium
References: CCI-000366
Updated: 17 days ago

The root role is required.

Determine if any .netrc files exist, and work with the owners to determine the best course of action in accordance with site policy.

User .netrc files must not exist.

Description

Remediation - Manual Procedure