Read Configs To Prevent Root Login Network Vulnerability

Summary

This plugin uses ssh to Read configs to prevent root login: Check for /etc/securettys show all non console, check if root login is not possible via SSH, check for SYSLOG_SU_ENAB in /etc/login.defs, check for perm 0644 on /etc/securettys /etc/login.defs /etc/sshd/sshd_config, check if root_squash is enabled on all NFS mounts

Severity

Classification

CVSS Base Score: 0.0
AV:N/AC:L/Au:N/C:N/I:N/A:N

Related Vulnerabilities

Check Sendmail Configuration
Removable Storage access on remote sessions (Win)
Read the status of NTFS MAC 'Last Access Timestamp' over WMI (Win)
SLAD Microsoft Baseline Security Analyzer Updates run
List Valid SNMP Communities (Win)

Take action and discover your vulnerabilities