Detections
Analytics

DISA STIG VMware vSphere 7.0 Photon OS v1r3

Audit Details

Name: DISA STIG VMware vSphere 7.0 Photon OS v1r3

Updated: 10/25/2024

Authority: DISA STIG

Plugin: Unix

Revision: 1.2

Estimated Item Count: 114

File Details

Filename: DISA_STIG_VMware_vSphere_7.0_Photon_OS_v1r3.audit

Size: 239 kB

MD5: 2fcb202a71fd9e817d979ff22a5a5ed6
SHA256: 6069ca37743a08d6bec8bf0ea23d871648847133c85e1943ac321ea592365b40

Audit Changelog

 
Revision 1.2

Oct 25, 2024

Functional Update
  • PHTN-30-000006 - The Photon operating system must have the sshd SyslogFacility set to 'authpriv'.
  • PHTN-30-000008 - The Photon operating system must have the sshd LogLevel set to 'INFO'.
  • PHTN-30-000009 - The Photon operating system must configure sshd to use approved encryption algorithms.
  • PHTN-30-000037 - The Photon operating system must configure sshd to disconnect idle Secure Shell (SSH) sessions.
  • PHTN-30-000038 - The Photon operating system must configure sshd to disconnect idle Secure Shell (SSH) sessions.
  • PHTN-30-000064 - The Photon operating system must configure sshd to use FIPS 140-2 ciphers.
  • PHTN-30-000078 - The Photon operating system must configure sshd to disallow Generic Security Service Application Program Interface (GSSAPI) authentication.
  • PHTN-30-000079 - The Photon operating system must configure sshd to disable environment processing.
  • PHTN-30-000080 - The Photon operating system must configure sshd to disable X11 forwarding.
  • PHTN-30-000081 - The Photon operating system must configure sshd to perform strict mode checking of home directory configuration files.
  • PHTN-30-000082 - The Photon operating system must configure sshd to disallow Kerberos authentication.
  • PHTN-30-000083 - The Photon operating system must configure sshd to disallow authentication with an empty password.
  • PHTN-30-000084 - The Photon operating system must configure sshd to disallow compression of the encrypted session stream.
  • PHTN-30-000085 - The Photon operating system must configure sshd to display the last login immediately after authentication.
  • PHTN-30-000086 - The Photon operating system must configure sshd to ignore user-specific trusted hosts lists.
  • PHTN-30-000087 - The Photon operating system must configure sshd to ignore user-specific 'known_host' files.
  • PHTN-30-000088 - The Photon operating system must configure sshd to limit the number of allowed login attempts per connection.
  • PHTN-30-000115 - The Photon operating system must configure sshd to disallow HostbasedAuthentication.
  • PHTN-30-000119 - The Photon operating system must configure sshd to restrict AllowTcpForwarding.
  • PHTN-30-000120 - The Photon operating system must configure sshd to restrict LoginGraceTime.
Miscellaneous
  • References updated.
Revision 1.1

Jun 17, 2024

Miscellaneous
  • Metadata updated.