SSH authentication attempts is not set to less than or equal to 4
Description
SSH (Secure Shell) protocol allows you to connect to a remote Linux system securely using a variety of SSH clients. The MaxAuthTries parameter in SSH server specifies the maximum number of authentication attempts permitted per connection. If this not configured, a Denial-of-service attack can be inflicted by attempting repeated authentication attempts. Fixing this misconfiguration will ensure the MaxAuthTries parameter is set to limit users from trying more than 4 authentication attempts per connection.
Severity
important
Category
Linux Secure Shell
Resolution
Follow the below steps to resolve the misconfiguration.
Edit the /etc/ssh/sshd_config file to set the parameter as follows:
MaxAuthTries 4
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
