AIX must turn on SSH daemon reverse name checking.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-215298 | SRG-OS-000480-GPOS-00227 | AIX7-00-002115 | SV-215298r991589_rule | 2026-02-06 | 3 |
Description
If reverse name checking is off, SSH may allow a remote attacker to circumvent security policies and attempt to or actually login from IP addresses that are not permitted to access resources.
ℹ️ Check
Check the SSH daemon configuration for the "VerifyReverseMapping" setting using command:
# grep -i VerifyReverseMapping /etc/ssh/sshd_config | grep -v '^#'
VerifyReverseMapping yes
If the setting is not present or the setting is "no", this is a finding.
✔️ Fix
Edit the "/etc/sshd/sshd_config" file and add the following line:
VerifyReverseMapping yes
Restart the SSH daemon:
# stopsrc -s sshd
# startsrc -s sshd