LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 11-12-2014, 01:54 AM   #16
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 2,388

Rep: Reputation: 851Reputation: 851Reputation: 851Reputation: 851Reputation: 851Reputation: 851Reputation: 851

In our recent audit for PCI-DSS Level 2 (and pre-audit for the new "Level 3" requirements) it was agreed that the as long as the banner was displayed it was acceptable, it did not require specific interactive acknowledgement. Obviously auditors / standards may vary, but PCI-DSS (at any level above "self certified") is usually pretty strict.
 
Old 11-12-2014, 06:59 AM   #17
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,696

Rep: Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261Reputation: 1261
Quote:
Originally Posted by TenTenths View Post
In our recent audit for PCI-DSS Level 2 (and pre-audit for the new "Level 3" requirements) it was agreed that the as long as the banner was displayed it was acceptable, it did not require specific interactive acknowledgement. Obviously auditors / standards may vary, but PCI-DSS (at any level above "self certified") is usually pretty strict.
It is also required of any DoD site that attempts to get DISA approval.

That is where I had to write a custom display manager login for UNIX/Linux systems that was ensured to have the banner displayed before the user could login. The "acceptance" by the user was implied by the act of login. So there was no need to have a special "I accept" entry before the login.

We also had to get an approval that it wasn't necessary for things like scp - as that broke the protocol setup and made the service incompatible with standards.

ssh wasn't a problem - it already had the capability to display a banner before login.

Last edited by jpollard; 11-12-2014 at 07:01 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to setup system Login banner and Login message 06-03-05 Linux - Newbie 10 03-11-2015 07:20 PM
SSH login banner/No root login jmoschetti45 Linux - Security 3 01-17-2010 04:51 PM
login screen banner mijohnst Linux - Enterprise 2 04-06-2008 01:00 AM
Login banner triley SUSE / openSUSE 1 06-21-2007 11:01 AM
login banner on RH 8 herrmag Linux - Newbie 1 02-14-2005 12:18 PM


All times are GMT -5. The time now is 08:22 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration