Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Deprecated option #95

Closed
JOduMonT opened this issue Jan 3, 2018 · 6 comments
Closed

Deprecated option #95

JOduMonT opened this issue Jan 3, 2018 · 6 comments
Assignees

Comments

@JOduMonT
Copy link

JOduMonT commented Jan 3, 2018

Here a bounch of option ssh-baseline say it's required and, at least for CentOS7, claimed as deprecated

  • UseLogin
  • RSAAuthentication
  • RhostsRSAAuthentication

would be interesting to ignore these on CentOS7 at least.

Regards!

Jonathan

@chris-rock
Copy link
Member

chris-rock commented Jan 5, 2018

@JOduMonT Great idea. Are you willing to add an inspec control and a reference to the deprecation?

@JOduMonT
Copy link
Author

JOduMonT commented Jan 7, 2018

willing sure,
know how to do it nope
I discover inspec with ssh-baseline, which means this week ;)

I'll look and tell you soon (3-5days)

@artem-sidorenko
Copy link
Member

RSAAuthentication and RhostsRSAAuthentication were resolved via #110

@chris-rock
Copy link
Member

@artem-sidorenko Can we close this now then?

@artem-sidorenko
Copy link
Member

artem-sidorenko commented Aug 3, 2018

@chris-rock no, UseLogin is open

@juju4
Copy link
Contributor

juju4 commented Sep 2, 2018

There is also UsePrivilegeSeparation which is deprecated started openssh 7.5 (apply to ubuntu 18.04)
https://www.openssh.com/txt/release-7.5

 * This release deprecates the sshd_config UsePrivilegeSeparation
   option, thereby making privilege separation mandatory. Privilege
   separation has been on by default for almost 15 years and
   sandboxing has been on by default for almost the last five.

artem-sidorenko added a commit to artem-forks/ssh-baseline that referenced this issue Oct 16, 2018
starting from openssh 7.4 (rhel 7)

Fixes dev-sec#95

Signed-off-by: Artem Sidorenko <artem@posteo.de>
artem-sidorenko added a commit to artem-forks/ssh-baseline that referenced this issue Oct 16, 2018
starting from openssh 7.4 (rhel 7)

Fixes dev-sec#95

Signed-off-by: Artem Sidorenko <artem@posteo.de>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

4 participants