Class | ssh::ssh |
In: |
/tmp/puppet/modules/ssh/manifests/init.pp
|
Parent: |
Module: ssh
Description:
The ssh module configures the /etc/ssh/sshd_config file to add some rules that limit the clients logging into an ssh server.
Linux Guide:
3.5.2 3.5.2.1, 3.5.2.3, 3.5.2.4, 3.5.2.5, 3.5.2.6, 3.5.2.7, 3.5.2.8
CCE Reference:
CCE-3660-8, CCE-3845-5, CCE-4325-7, CCE-4370-3, CCE-4387-7, CCE-4431-3, CCE-4475-0
TODO:
Some setting in /manifests/settings.pp could determine whether to use sshd at all. And if so select one set of rules disabling sshd, and if not, select the other set of rules currently enforced. Tightening down iptables rules would also be recommended. Guide 3.5.2.9
GuideSection 3.5.2 3.5.2.1 3.5.2.3 3.5.2.4 3.5.2.5 3.5.2.6 3.5.2.7 3.5.2.8 configure ssh server