Common Controls Hub
The SSH daemon must not permit user environment settings.
SSH environment options potentially allow users to bypass access restriction in some configurations.
Red Hat Enterprise Linux 6 Security Technical Implementation Guide
Check Text ( C-46175r1_chk )
To ensure users are not able to present environment daemons, run the following command:
# grep PermitUserEnvironment /etc/ssh/sshd_config
If properly configured, output should be:
If it is not, this is a finding.
Fix Text (F-43565r1_fix)
To ensure users are not able to present environment options to the SSH daemon, add or correct the following line in "/etc/ssh/sshd_config":