Check for CVE-2016-0777 (SSH "No Roaming")

SummitRoute / osxlockdown

[No longer maintained] Apple OS X tool to audit for, and remediate, security configuration settings.

MIT License

776 stars 51 forks source link

Check for CVE-2016-0777 (SSH "No Roaming") #32

Open 0xdabbad00 opened 8 years ago

0xdabbad00 commented 8 years ago

Apple still has not updated SSH, so check the version and additionally check for "No Roaming". On failure add the following to the /etc/ssh/ssh_config under the Host * section:

# Fixing CVE-2016-0777
UseRoaming no

TraderStf commented 8 years ago

https://www.jacobtomlinson.co.uk/quick%20tip/2016/01/15/fixing-ssh-vulnerability-CVE-2016-0777/

command to test and fix it