{"description": "The <tt>~/.shosts</tt> (in each user's home directory) files\nlist remote hosts and users that are trusted by the\nlocal system. To remove these files, run the following command\nto delete them from any location:\n<pre>$ sudo find / -name '.shosts' -type f -delete</pre>", "rationale": "The .shosts files are used to configure host-based authentication for\nindividual users or the system via SSH. Host-based authentication is not\nsufficient for preventing unauthorized access to the system, as it does not\nrequire interactive identification and authentication of a connection request,\nor for the use of two-factor authentication.", "severity": "high", "references": {"srg": ["SRG-OS-000480-GPOS-00227"]}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": ".shosts files exist", "ocil": "To verify that there are no <tt>.shosts</tt> files\non the system, run the following command:\n<pre>$ sudo find / -name '.shosts'</pre>", "oval_external_content": null, "fixtext": "Remove any found \".shosts\" files from the system.\n\n$ sudo rm /[path]/[to]/[file]/.shosts", "checktext": "", "vuldiscussion": "", "srg_requirement": "There must be no .shosts files on Ubuntu 22.04.", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {"stig": {"srg_requirement": "There must be no .shosts files on Ubuntu 22.04.", "vuldiscussion": "The .shosts files are used to configure host-based authentication for individual users or the system via SSH. Host-based authentication is not sufficient for preventing unauthorized access to the system, as it does not require interactive identification and authentication of a connection request, or for the use of two-factor authentication.", "checktext": "Verify there are no \".shosts\" files on Ubuntu 22.04 with the following command:\n\n$ sudo find / -name .shosts\n\nIf a \".shosts\" file is found, this is a finding.", "fixtext": "Remove any found \".shosts\" files from the system.\n\n$ sudo rm /[path]/[to]/[file]/.shosts"}}, "platform": null, "platforms": [], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": [], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Remove User Host-Based Authentication Files", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/obsolete/r_services/no_user_host_based_files/rule.yml", "template": null}