Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of OpenEmbedded
Services
SSH Server
Configure OpenSSH Server if Necessary
Enable Use of Strict Mode Checking
Enable Use of Strict Mode Checking
An XCCDF Rule
Details
Profiles
Prose
Enable Use of Strict Mode Checking
Medium Severity
SSHs
StrictModes
option checks file and ownership permissions in the user's home directory
.ssh
folder before accepting login. If world- writable permissions are found, logon is rejected.
The default SSH configuration has
StrictModes
enabled. The appropriate configuration is used if no value is set for
StrictModes
.
To explicitly enable
StrictModes
in SSH, add or correct the following line in
/etc/ssh/sshd_config
:
StrictModes yes