You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the Issue
RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax, which eliminates the ClientAliveInterval value in the /etc/ssh/sshd_config file.
Expected Behavior
RHEL-08-010201 task should find the ClientAliveInterval line in /etc/ssh/sshd_config and update the configured value with the variable rhel8stig_ssh_session_timeout
Actual Behavior
The ClientAliveInterval line in /etc/ssh/sshd_config is being replaced by ClientAliveCountMax 0.
Thank you for taking the time to raise this bug and explaining the issue. We are currently working through the next STIG release and will be adding this as part of the next update.
Thanks again for the feedback, this should be resolved in the latest devel branch incorporating the latest stig release updates as well.
I will close this issue over the next week unless you have any questions?
Describe the Issue
RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax, which eliminates the ClientAliveInterval value in the /etc/ssh/sshd_config file.
Expected Behavior
RHEL-08-010201 task should find the ClientAliveInterval line in /etc/ssh/sshd_config and update the configured value with the variable
rhel8stig_ssh_session_timeout
Actual Behavior
The ClientAliveInterval line in /etc/ssh/sshd_config is being replaced by ClientAliveCountMax 0.
Control(s) Affected
What controls are being affected by the issue
Environment (please complete the following information):
Additional Notes
Possible Solution
`
lineinfile:
path: /etc/ssh/sshd_config
regexp: '(?i)^#?ClientAliveInterval.*'
line: "ClientAliveInterval {{ rhel8stig_ssh_session_timeout }}"
notify: restart sshd
when:
- rhel_08_010201
- rhel8stig_ssh_required
tags:
- RHEL-08-010201
- CAT2
- CCI-001133
- SRG-OS-000163-GPOS-00072
- SV-244525r743824_rule
- V-244525
- ssh
`
The text was updated successfully, but these errors were encountered: