View the security misconfiguration catalog
  • Misconfiguration Name
  • SSH authentication attempts is not set to less than or equal to 4
  • Description
  • SSH (Secure Shell) protocol allows you to connect to a remote Linux system securely using a variety of SSH clients. The MaxAuthTries parameter in SSH server specifies the maximum number of authentication attempts permitted per connection. If this not configured, a Denial-of-service attack can be inflicted by attempting repeated authentication attempts. Fixing this misconfiguration will ensure the MaxAuthTries parameter is set to limit users from trying more than 4 authentication attempts per connection.
  • Severity
  • important
  • Category
  • Linux Secure Shell
  • Resolution
  • Follow the below steps to resolve the misconfiguration. Edit the /etc/ssh/sshd_config file to set the parameter as follows:
    MaxAuthTries 4
  • Potential issues that may arise after applying the resolution
  • Altering the existing security setting may create the following impact in your network operations.
  • Does remediation require reboot?
  • No