ansible-role-security icon indicating copy to clipboard operation
ansible-role-security copied to clipboard

Published 20 hours ago verified publisher icon geerlingguy

Protocol settings for sshd missing

Open staticdev opened this issue 2 years ago • 0 comments

Adding Protocol 2 to sshd_config is a general security good practice.

Some references:

  • https://www.tecmint.com/secure-openssh-server/
  • http://www.snailbook.com/faq/ssh-1-vs-2.auto.html
  • https://docstore.mik.ua/orelly/networking_2ndEd/ssh/ch03_05.htm

staticdev avatar Aug 07 '22 13:08 staticdev

The default has been 1 for some time, though — are there security scanning tools that are coming up and pointing this out, or are there systems you're using the role on that are defaulting to 1 for some reason?

geerlingguy avatar Aug 17 '22 15:08 geerlingguy

@geerlingguy actually after some research I saw latest versions of ssh server don't even have this parameter anymore. It is Procotol 2 only ;)

staticdev avatar Aug 19 '22 16:08 staticdev