Details

Checking that /etc/ssh/sshd_config has been edited to disallow authenticating users with null passwords.

Supportive Information

The following resource is also helpful.

• https://workbench.cisecurity.org/files/525

This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Unix.

References

• 800-53|IA-5

Source

• Tenable.com/audits