The AIX system must have no .netrc files on the system.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| high | V-215403 | SRG-OS-000073-GPOS-00041 | AIX7-00-003101 | SV-215403r1009555_rule | 2026-02-06 | 3 |
Description
Unencrypted passwords for remote FTP servers may be stored in .netrc files. Policy requires passwords be encrypted in storage and not used in access scripts.
ℹ️ Check
Check the system for the existence of any ".netrc" files by running the following command:
# find / -name .netrc
If any ".netrc" file exists, this is a finding.
✔️ Fix
Remove all ".netrc" file(s):
# find / -name .netrc -exec rm {} \;