The Photon operating system must configure Secure Shell (SSH) to limit the number of allowed login attempts per connection.

An XCCDF Rule

Details
Profiles

Description

By setting the login attempt limit to a low value, an attacker will be forced to reconnect frequently, which severely limits the speed and effectiveness of brute-force attacks.

ID: SV-258882r991589_rule
Version: PHTN-40-000219
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

Navigate to and open:

/etc/ssh/sshd_config

Ensure the "MaxAuthTries" line is uncommented and set to the following:
MaxAuthTries 6

At the command line, run the following command:

# systemctl restart sshd.service

The Photon operating system must configure Secure Shell (SSH) to limit the number of allowed login attempts per connection.

Description

Remediation Templates

A Manual Procedure