Remove SSH Server firewalld Firewall exception (Unusual)
An XCCDF Rule
Description
By default, inbound connections to SSH's port are allowed. If
the SSH server is not being used, this exception should be removed from the
firewall configuration.
To configure firewalld to prevent access, run the following command(s):
firewall-cmd --permanent --remove-service=ssh
Rationale
If inbound SSH connections are not expected, disallowing access to the SSH port will avoid possible exploitation of the port by an attacker.
- ID
- xccdf_org.ssgproject.content_rule_firewalld_sshd_disabled
- Severity
- Unknown
- References
- Updated