STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide

V-261330

CAT I (High)

SLEM 5 must not allow unattended or automatic logon via SSH.

Rule ID

SV-261330r996457_rule

STIG

SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide

Version

V1R4

CCIs

CCI-000366

Discussion

Failure to restrict system access via SSH to authenticated users negatively impacts SLEM 5 security.

Check Content

Verify SLEM 5 disables unattended or automatic logon via SSH with the following command:

     > sudo /usr/sbin/sshd -dd 2>&1 | awk '/filename/ {print $4}' | tr -d '\r' | tr '\n' ' ' | xargs sudo grep -iEH '^\s*(permit(.*?)(passwords|environment))'
     /etc/ssh/sshd_config:PermitEmptyPasswords no
     /etc/ssh/sshd_config:PermitUserEnvironment no

If "PermitEmptyPasswords" or "PermitUserEnvironment" keywords are not set to "no", are commented out, or are missing completely, this is a finding.

Fix Text

Configure SLEM 5 disables unattended or automatic logon via SSH.

Add or modify the following lines in the "/etc/ssh/sshd_config" file:

PermitEmptyPasswords no
PermitUserEnvironment no