Verify Group Ownership on SSH Server Private *_key Key Files
An XCCDF Rule
Description
SSH server private keys, files that match the /etc/ssh/*_key glob, must be
group-owned by ssh_keys group.
Rationale
If an unauthorized user obtains the private SSH host key file, the host could be impersonated.
- ID
- xccdf_org.ssgproject.content_rule_file_groupownership_sshd_private_key
- Severity
- Medium
- Updated