1.7.1.1 Ensure message of the day is configured properly - banner text

Information

Warning messages inform users who are attempting to login to the system of their legal status regarding the system and must include the name of the organization that owns the system and any monitoring policies that are in place. Displaying OS and patch level information in login banners also has the side effect of providing detailed system information to attackers attempting to target specific exploits of a system. Authorized users can easily get this information by running the 'uname -a' command once they have logged in.

Solution

Edit the /etc/motd file with the appropriate contents according to your site policy, remove any instances of m, r, s, or v.

See Also

https://workbench.cisecurity.org/files/1863

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-8, CSCv6|3.1

Plugin: Unix

Control ID: eb54a414794edc9bc27d6077b7b332bbc0662718de7c859a4726cd85b8333454