From 14d2bf571e5f1d53c5efde91555a3e8aa5895206 Mon Sep 17 00:00:00 2001
From: Deric Miguel <dmiguel@logicworks.net>
Date: Thu, 8 Apr 2021 19:07:10 -0700
Subject: [PATCH] fix(5.2.5): allow INFO as SSH LogLevel

The audit procedure for this control states that 'VERBOSE' _OR_ 'INFO'
are valid configuration values.

Fixes dev-sec/cis-dil-benchmark#110

on-behalf-of: @Logicworks <dmiguel@logicworks.net>
Signed-off-by: Deric Miguel <dmiguel@logicworks.net>
---
 controls/5_2_ssh_server_configuration.rb | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/controls/5_2_ssh_server_configuration.rb b/controls/5_2_ssh_server_configuration.rb
index db709b0..53d376e 100644
--- a/controls/5_2_ssh_server_configuration.rb
+++ b/controls/5_2_ssh_server_configuration.rb
@@ -138,8 +138,10 @@
   tag cis: 'distribution-independent-linux:5.2.5'
   tag level: 1
 
+  allowed_log_levels = %w[INFO VERBOSE]
+
   describe sshd_config do
-    its('LogLevel') { should eq 'VERBOSE' }
+    its('LogLevel') { should be_in allowed_log_levels }
   end
 end