-
**Is your feature request related to a problem? Please describe.**
I run the ssh role from [dev-sec/ansible-collection-hardening](https://github.com/dev-sec/ansible-collection-hardening/) on an…
-
An exemplary config you can probably just copy can be found here: https://github.com/dr460nf1r3/dr460nixed/blob/main/nixos/modules/hardening.nix#L126
This applies all suggestions from [ssh-audit](h…
-
#### Description of problem:
`sshd_set_keepalive` is misaligned with DISA's `xccdf_mil.disa.stig_rule_SV-257995r970703_rule`.
Content uses distributed config and puts it to different file than DISA …
-
|Wazuh version|Component|
|---|---|
| 4.5.2 | Security Configuration Assessment |
## Description
I'm testing Security Configuration Assessment on an Arch Linux with installed agent and all t…
-
- [x] fail2ban?
- [ ] config hardening? See https://infosec.mozilla.org/guidelines/openssh or https://www.sshaudit.com/hardening_guides.html
-
In addition to the general configuration and FRR configuration, certain aspects of the system require automated configuration, including:
- Setting the hostname
- Managing authorized SSH keys for th…
-
**Describe the bug**
After applying hardening, I can't enter the system as an LDAP user
**To Reproduce**
ssh user@server
LOGS:
Nov 8 10:39:36 my-server sshd[566803]: pam_sss(sshd:auth): authen…
-
Maybe following CIS guidelines to thing about:
CIS - 9.3.1 Set SSH Protocol to 2
CIS - 9.3.2 Set LogLevel to INFO
CIS - 9.3.3 Set Permissions on /etc/ssh/sshd_config
CIS - 9.3.(4,7,8,9,10) Disab…
-
Thank you for all the effort put into `goss`, and for making it open source.
Context: We currently use `chef-zero` and `inspec` and are looking to migrate to `salt` and `goss` as we migrate we thou…
-
Since this is probably not a bug but more of a feature, havec skipped the template description.
My question would be: which part of the hardening could cause a tmux detached session to be killed af…