System stack

You can file an issue about it and ask that it be added.

System stack

The SSH protocol is recommended for remote login and remote file transfer. SSH provides confidentiality and integrity for data exchanged between two systems, as well as server authentication, through the use of public key cryptography.

Disable empty passwords

Rationale

Configuring this setting for the SSH daemon provides additional assurance that remote login via SSH will require a password, even in the event of misconfiguration elsewhere.

Solution

Explicitly disallow SSH login from accounts with empty passwords

PermitEmptyPasswords no

^{C2S/CIS: CCE-27471-2 (High)}

The Practical Linux Hardening Guide provides a high-level overview of the hardening GNU/Linux systems. It is not an official standard or handbook but it touches and use industry standards.

Basic information

`Core Layer`

`Kernel Layer`

`Extended Layer`

Entropy
Compilers
Devices

`Logging & Auditing`

Syslog
OSSEC
Tiger
Aide
Logwatch

`System Services`

NTP
Cron
GnuPG 2

`Other Services`

Bind9
Unbound
Postfix
Nginx
Apache
PostgreSQL
MySQL
Redis
AMQP

`Containers`

LXC/LXD
Docker

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

System stack

Table of Contents

System stack

Disable empty passwords

Rationale

Solution

Explicitly disallow SSH login from accounts with empty passwords

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Basic information

`Core Layer`

`Kernel Layer`

`Extended Layer`

`Logging & Auditing`

`System Services`

`Other Services`

`Containers`

Clone this wiki locally