Verify Ownership on SSH Server Private *_key Key Files
An XCCDF Rule
Description
SSH server private keys, files that match the /etc/ssh/*_key glob, must be owned
by root user.
Rationale
If an unauthorized user obtains the private SSH host key file, the host could be impersonated.
- ID
- xccdf_org.ssgproject.content_rule_file_ownership_sshd_private_key
- Severity
- Medium
- Updated