Details

The /etc/hosts.deny file serves as a failsafe so that any host not specified in /etc/hosts.allow is denied access to the system.

Solution

Run the following command to create /etc/hosts.deny: # echo ‘ALL: ALL’ >> /etc/hosts.deny

Supportive Information

The following resource is also helpful.

• https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623.html

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Unix.

References

• 800-53|SC-7(5)
• CSCv6|9.2

Source

• Tenable.com/audits