| VID |
14113 |
| Severity |
10 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
Most of the accounts created by default when installing OS or Package are often using the default password and can be exploited by password guessing attack. Therefore, it is necessary to check
whether there is a default account that is not used in the system and whether there is a suspicious special account. In addition, unmanaged and unnecessary accounts can access the system, so you
should remove accounts that are no longer in use, unnecessary accounts, or suspicious accounts for reasons such as retirement, employment, or leave of absence. In particular, unused accounts whose
long-term passwords have not been changed should be removed because it is possible to perform repeated password guessing attacks and it is difficult to check whether account information is leaked.
* Affected platforms:
UNIX, Linux |
| Recommendation |
Unnecessary users can be removed as follows.
1. Identify unnecessary user accounts registered on the server
2. Delete unnecessary user accounts with userdel command
#userdel <user_name> |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
