The Photon operating system must configure Secure Shell (SSH) to disable user environment processing.

An XCCDF Rule

Description

Enabling user environment processing may enable users to bypass access restrictions in some configurations and must therefore be disabled.

ID: SV-258871r933674_rule
Version: PHTN-40-000208
Severity: High
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

Navigate to and open:

/etc/ssh/sshd_config

Ensure the "PermitUserEnvironment" line is uncommented and set to the following:
PermitUserEnvironment no

At the command line, run the following command:

# systemctl restart sshd.service