RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax. #65
Assignees
Labels
bug
Something isn't working
Comments
|
hi @rheak Thank you for taking the time to raise this bug and explaining the issue. We are currently working through the next STIG release and will be adding this as part of the next update. regards uk-bolly |
uk-bolly
added a commit
that referenced
this issue
Dec 22, 2021
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
Merged
|
hi @rheak Thanks again for the feedback, this should be resolved in the latest devel branch incorporating the latest stig release updates as well. Many thanks uk-bolly |
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the Issue
RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax, which eliminates the ClientAliveInterval value in the /etc/ssh/sshd_config file.
Expected Behavior
RHEL-08-010201 task should find the ClientAliveInterval line in /etc/ssh/sshd_config and update the configured value with the variable
rhel8stig_ssh_session_timeoutActual Behavior
The ClientAliveInterval line in /etc/ssh/sshd_config is being replaced by ClientAliveCountMax 0.
Control(s) Affected
What controls are being affected by the issue
Environment (please complete the following information):
Additional Notes
Possible Solution
`
lineinfile:
path: /etc/ssh/sshd_config
regexp: '(?i)^#?ClientAliveInterval.*'
line: "ClientAliveInterval {{ rhel8stig_ssh_session_timeout }}"
notify: restart sshd
when:
- rhel_08_010201
- rhel8stig_ssh_required
tags:
- RHEL-08-010201
- CAT2
- CCI-001133
- SRG-OS-000163-GPOS-00072
- SV-244525r743824_rule
- V-244525
- ssh
`
The text was updated successfully, but these errors were encountered: