LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 11-12-2014, 02:54 AM   #16
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 2,305

Rep: Reputation: 816Reputation: 816Reputation: 816Reputation: 816Reputation: 816Reputation: 816Reputation: 816

In our recent audit for PCI-DSS Level 2 (and pre-audit for the new "Level 3" requirements) it was agreed that the as long as the banner was displayed it was acceptable, it did not require specific interactive acknowledgement. Obviously auditors / standards may vary, but PCI-DSS (at any level above "self certified") is usually pretty strict.
 
Old 11-12-2014, 07:59 AM   #17
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,654

Rep: Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255Reputation: 1255
Quote:
Originally Posted by TenTenths View Post
In our recent audit for PCI-DSS Level 2 (and pre-audit for the new "Level 3" requirements) it was agreed that the as long as the banner was displayed it was acceptable, it did not require specific interactive acknowledgement. Obviously auditors / standards may vary, but PCI-DSS (at any level above "self certified") is usually pretty strict.
It is also required of any DoD site that attempts to get DISA approval.

That is where I had to write a custom display manager login for UNIX/Linux systems that was ensured to have the banner displayed before the user could login. The "acceptance" by the user was implied by the act of login. So there was no need to have a special "I accept" entry before the login.

We also had to get an approval that it wasn't necessary for things like scp - as that broke the protocol setup and made the service incompatible with standards.

ssh wasn't a problem - it already had the capability to display a banner before login.

Last edited by jpollard; 11-12-2014 at 08:01 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to setup system Login banner and Login message 06-03-05 Linux - Newbie 10 03-11-2015 08:20 PM
SSH login banner/No root login jmoschetti45 Linux - Security 3 01-17-2010 05:51 PM
login screen banner mijohnst Linux - Enterprise 2 04-06-2008 02:00 AM
Login banner triley SUSE / openSUSE 1 06-21-2007 12:01 PM
login banner on RH 8 herrmag Linux - Newbie 1 02-14-2005 01:18 PM


All times are GMT -5. The time now is 10:21 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration