The Photon operating system must be configured to protect the Secure Shell (SSH) public host key from unauthorized modification.

An XCCDF Rule

Description

If a public host key file is modified by an unauthorized user, the SSH service may be compromised.

ID: SV-256577r991589_rule
Version: PHTN-30-000108
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

At the command line, run the following commands for each returned file:

# chmod 644 <file>
# chown root:root <file>