micheelengronne
commented
4 years ago Do you consider that can be merged ?
Closed schurzi closed 4 years ago
micheelengronne
commented
4 years ago Do you consider that can be merged ?
schurzi
commented
4 years ago I think so, yes. I ran this locally on all kitchen hosts in https://github.com/dev-sec/ansible-ssh-hardening/blob/master/.kitchen.yml and it didn't generate unexpected errors. I'm currently preparing another update on ansibe-ssh-hardening to solve the fedora setup correctly. So there would be currently one expected error, since the ansible role doesn't handle fedora the right way.
Do you have any improvements or recommendations regarding the code?
since fedora uses different version scheme it was not covered by previous check. Also add checks for ssh client, to see if we successfully override CRYPTO_POLICY there
Signed-off-by: Martin Schurz Martin.Schurz@t-systems.com