AIX Security Expert Remove access that does not require Authentication group

AIX® supports few services that do not require user authentication to log into the network.

The /etc/hosts.equiv file and any local $HOME/.rhosts files define hosts and user accounts that can run remote commands on a local host without a password. Unless this capability is explicitly required, these files should be cleared.

Table 1. AIX Security Expert Remove access that does not require Authentication
Action button name Description Value set by AIX Security Expert Undo
Remove rhosts and netrc services .rhosts and .netrc files store usernames and passwords in plain text format, which can be exploited.
High Level Security
Remove .rhosts and .netrc files from home directories of all users, including root.
Medium Level Security
Remove .rhosts and .netrc files from home directories of all users, including root.
Low Level Security
Remove .rhosts and .netrc files from home directory of root.
AIX Standard Settings
Remove .rhosts and .netrc files from home directories of all users, including root.
Yes
Remove entries from /etc/hosts.equiv file The /etc/hosts.equiv file, along with a local user's $HOME/.rhosts file, defines which users on foreign hosts are permitted to remotely run commands on the local host. If someone on the foreign host learns the details of the username and hostname, they can find ways to run remote commands on the local host without any authentication.
High Level Security
Remove all entries from /etc/hosts.equiv.
Medium Level Security
Remove all entries from /etc/hosts.equiv.
Low Level Security
Remove all entries from /etc/hosts.equiv.
AIX Standard Settings
Remove all entries from /etc/hosts.equiv.
Yes