File: rule.yml

package info (click to toggle)
scap-security-guide 0.1.65-1
  • links: PTS, VCS
  • area: main
  • in suites: bookworm
  • size: 71,936 kB
  • sloc: xml: 179,374; sh: 69,771; python: 23,819; makefile: 23
file content (36 lines) | stat: -rw-r--r-- 943 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
 
documentation_complete: true

title: 'Disable SSH Server If Possible (Unusual)'

description: |-
    The SSH server service, sshd, is commonly needed.
    However, if it can be disabled, do so.
    {{% if product in ['debian10', 'debian11', 'ubuntu1604', 'ubuntu1804'] %}}
    {{{ describe_service_disable(service="sshd") }}}
    {{% else %}}
    {{{ describe_service_disable(service="sshd") }}}
    {{% endif %}}
    This is unusual, as SSH is a common method for encrypted and authenticated
    remote access.

rationale: ""

references:
  nist: CM-3(6),IA-2(4)

severity: unknown

identifiers:
    cce@rhel7: CCE-80217-3

template:
    name: service_disabled
    vars:
        servicename: sshd
        packagename: openssh-server
        packagename@opensuse: openssh
        packagename@sle12: openssh
        daemonname@debian10: ssh
        daemonname@debian11: ssh
        daemonname@ubuntu1604: ssh
        daemonname@ubuntu1804: ssh