DISA STIG VMware vSphere 6.x ESXi OS V1R5

Details GSSAPI authentication is used to provide additional authentication mechanisms to applications. Allowing GSSAPI authentication through SSH exposes the system’s...

Details Kerberos authentication for SSH is often implemented using GSSAPI. If Kerberos is enabled through SSH, the SSH daemon provides...

Details If other users have access to modify user-specific SSH configuration files, they may be able to log into the...

Details If compression is allowed in an SSH connection prior to authentication, vulnerabilities in the compression software could result in...

Details SSH TCP connection forwarding provides a mechanism to establish TCP connections proxied by the SSH server. This function can...

Details X11 forwarding over SSH allows for the secure remote execution of X11-based applications. This feature can increase the attack...

Details OpenSSH has the ability to create network tunnels (layer-2 and layer-3) over an SSH connection. This function can provide...

Details This ensures a user login will be terminated as soon as the ‘ClientAliveCountMax’ is reached. Solution To set the...

Details Causing idle users to be automatically logged out guards against compromises one system leading trivially to compromises on another....

Details The SSH protocol has the ability to provide multiple sessions over a single connection without reauthentication. A compromised client...