← Back to IBM z/OS TSS Security Technical Implementation Guide

V-224103

CAT II (Medium)

The IBM z/OS UNIX Telnet server warning banner must be properly specified.

Rule ID

SV-224103r958586_rule

STIG

IBM z/OS TSS Security Technical Implementation Guide

Version

V9R8

CCIs

CCI-001384 CCI-001385 CCI-001386 CCI-001387 CCI-001388

Discussion

Display of a standardized and approved use notification before granting access to the operating system ensures privacy and security notification verbiage used is consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. System use notifications are required only for access via logon interfaces with human users and are not required when such human interfaces do not exist.

Check Content

From the ISPF Command Shell enter:
OMVS
cat inetd.conf

If the otelnet startup command includes option "-h" this is a finding.

Fix Text

The otelnetd startup command should not include the option "-h", where:

-h indicates that the logon banner should not be displayed.