1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
documentation_complete: true
title: 'Install the OpenSSH Server Package'
description: |-
The <tt>openssh-server</tt> package should be installed.
{{{ describe_package_install(package="openssh-server") }}}
rationale: |-
Without protection of the transmitted information, confidentiality, and
integrity may be compromised because unprotected communications can be
intercepted and either read or altered.
severity: medium
identifiers:
cce@rhel7: CCE-80215-7
cce@rhel8: CCE-83303-8
cce@rhel9: CCE-90823-6
references:
cis-csc: 13,14
cobit5: APO01.06,DSS05.02,DSS05.04,DSS05.07,DSS06.02,DSS06.06
disa: CCI-002418,CCI-002420,CCI-002421,CCI-002422
isa-62443-2013: 'SR 3.1,SR 3.8,SR 4.1,SR 4.2,SR 5.2'
iso27001-2013: A.10.1.1,A.11.1.4,A.11.1.5,A.11.2.1,A.13.1.1,A.13.1.3,A.13.2.1,A.13.2.3,A.13.2.4,A.14.1.2,A.14.1.3,A.6.1.2,A.7.1.1,A.7.1.2,A.7.3.1,A.8.2.2,A.8.2.3,A.9.1.1,A.9.1.2,A.9.2.3,A.9.4.1,A.9.4.4,A.9.4.5
nist: CM-6(a)
nist-csf: PR.DS-2,PR.DS-5
ospp: FIA_UAU.5,FTP_ITC_EXT.1,FCS_SSH_EXT.1,FCS_SSHS_EXT.1
srg: SRG-OS-000423-GPOS-00187,SRG-OS-000424-GPOS-00188,SRG-OS-000425-GPOS-00189,SRG-OS-000426-GPOS-00190
stigid@ol7: OL07-00-040300
stigid@ol8: OL08-00-040159
stigid@rhel7: RHEL-07-040300
stigid@rhel8: RHEL-08-040159
stigid@ubuntu2004: UBTU-20-010042
ocil_clause: 'the package is not installed'
ocil: '{{{ ocil_package(package="openssh-server") }}}'
template:
name: package_installed
vars:
pkgname: openssh-server
fixtext: |-
{{{ describe_package_install(package="openssh-server") }}}
srg_requirement: '{{{ srg_requirement_package_installed("openssh-server") }}}'
|
