Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update CIS requirement for SSH access limit #10470

Merged
merged 1 commit into from
Apr 18, 2023
Merged

Update CIS requirement for SSH access limit #10470

merged 1 commit into from
Apr 18, 2023

Conversation

marcusburghardt
Copy link
Member

Description:

The 5.3.4 CIS requirement for RHEL7 and 5.2.4 CIS requirement for RHEL8 and RHEL9 were updated to automated status by using the sshd_limit_user_access rule.
This rule now has OVAL and tests.
There is no automated remediation for this rule because it varies for each system depending on site policies.

Rationale:

Better CIS coverage for RHEL.

@marcusburghardt
Update CIS requirement for SSH access limit
22898fe 
The 5.3.4 CIS requirement for RHEL7 and 5.2.4 CIS requirement for RHEL8
and RHEL9 were updated to automated status by using the
sshd_limit_user_access rule. This rule now has OVAL and tests. There is
no automated remediation for this rule because it varies for each
system depending on site policies.
@marcusburghardt marcusburghardt added RHEL Red Hat Enterprise Linux product related. CIS CIS Benchmark related. labels Apr 18, 2023
@marcusburghardt marcusburghardt added this to the 0.1.68 milestone Apr 18, 2023
@marcusburghardt marcusburghardt requested a review from a team as a code owner April 18, 2023 11:37
@github-actions
Copy link

Start a new ephemeral environment with changes proposed in this pull request:

Fedora Environment
Open in Gitpod

Oracle Linux 8 Environment
Open in Gitpod

@codeclimate
Copy link

codeclimate bot commented Apr 18, 2023

Code Climate has analyzed commit 22898fe and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 52.4% (0.0% change).

View more on Code Climate.

@Mab879 Mab879 self-assigned this Apr 18, 2023
@Mab879 Mab879 added the Update Profile Issues or pull requests related to Profiles updates. label Apr 18, 2023
@Mab879 Mab879 merged commit 37c38fe into ComplianceAsCode:master Apr 18, 2023
@marcusburghardt marcusburghardt deleted the cis_ssh_limit_user_access branch April 18, 2023 14:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mab879 Mab879 Mab879 approved these changes

Assignees

@Mab879 Mab879

Labels
CIS CIS Benchmark related. RHEL Red Hat Enterprise Linux product related. Update Profile Issues or pull requests related to Profiles updates.
Projects
None yet
Milestone
0.1.68
Development

Successfully merging this pull request may close these issues.

RHEL 8 CIS 5.2.2 Ensure SSH access is limited (Automated)
2 participants
@marcusburghardt @Mab879