AIX7-00-001028 - AIX must provide the lock command to let users retain their session lock until users are reauthenticated.

Information

All systems are vulnerable if terminals are left logged in and unattended. Leaving system terminals unsecure poses a potential security hazard.

To lock the terminal, use the lock command.

Solution

Install 'bos.rte.security' fileset from the AIX DVD Volume 1 using the following command (assuming that the DVD device is mounted to /dev/cd0):

# installp -aXYgd /dev/cd0 -e /tmp/install.log bos.rte.security

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_AIX_7-x_V2R8_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000056, Rule-ID|SV-215187r508663_rule, STIG-ID|AIX7-00-001028, STIG-Legacy|SV-101329, STIG-Legacy|V-91229, Vuln-ID|V-215187

Plugin: Unix

Control ID: 23799cd7f197872faee49867d6eafe65e74bb4eb5c589e5e087b617553848aae