search

dev-sec / ssh-baseline

DevSec SSH Baseline - InSpec Profile
https://dev-sec.io/baselines/ssh/
Apache License 2.0
276 stars 76 forks source link

Error performing inspec exec https://github.com/dev-sec/tests-ssh-hardening #66

Closed cjbischoff closed 8 years ago

cjbischoff commented 8 years ago

I am getting an error - seems to be specific to the ruby script in the libraries folder

  ✔  ssh-21: Client: Do not allow Roaming
     ✔  SSH Configuration UseRoaming should eq "no"
  ✖  sshd-01: Server: Check for secure ssh ciphers (undefined local variable or method `ssh_crypto' for #<RSpec::ExampleGroups::SSHConfiguration_21::Ciphers:0x007fbb93984238>
     Did you mean?  ssh_config)
  ✖  sshd-02: Server: Check for secure ssh Key-Exchange Algorithm (undefined local variable or method `ssh_crypto' for #<RSpec::ExampleGroups::SSHConfiguration_22::KexAlgorithms:0x007fbb9397e798>
     Did you mean?  ssh_config)
  ✖  sshd-03: Server: Check for secure ssh Message Authentication Codes (undefined local variable or method `ssh_crypto' for #<RSpec::ExampleGroups::SSHConfiguration_23::MACs:0x007fbb9397c088>
     Did you mean?  ssh_config)

Ruby/Gem specifics

❯❯❯ ruby -v                                                                                                     ⏎
ruby 2.3.1p112 (2016-04-26 revision 54768) [x86_64-darwin14]

christopher@PhishMe λ ~/inspec rb:ruby-2.3.1p112
❯❯❯ gem list

*** LOCAL GEMS ***

addressable (2.4.0)
ast (2.3.0)
bigdecimal (1.2.8)
builder (3.2.2)
bundler (1.13.1)
bundler-unload (1.0.2)
coderay (1.1.1)
colorize (0.8.1)
descendants_tracker (0.0.4)
did_you_mean (1.0.0)
diff-lcs (1.2.5)
docker-api (1.31.0)
erubis (2.7.0)
excon (0.52.0)
executable-hooks (1.3.2)
faraday (0.9.2)
ffi (1.9.14)
gem-wrappers (1.2.7)
github_api (0.14.5)
github_changelog_generator (1.12.1)
gssapi (1.2.0)
gyoku (1.3.1)
hashie (3.4.4)
highline (1.6.21)
httpclient (2.8.2.4)
inspec (0.34.1)
io-console (0.4.5)
json (2.0.2, 1.8.3)
jwt (1.5.4)
little-plugger (1.1.4)
logging (2.1.0)
method_source (0.8.2)
minitest (5.8.3)
mixlib-log (1.7.1)
mixlib-shellout (2.2.7)
multi_json (1.12.1)
multi_xml (0.5.5)
multipart-post (2.0.0)
net-scp (1.2.1)
net-ssh (3.2.0)
net-telnet (0.1.1)
nori (2.6.0)
oauth2 (1.2.0)
parallel (1.9.0)
parser (2.3.1.2)
power_assert (0.2.6)
powerpack (0.1.1)
pry (0.10.4)
psych (2.0.17)
rack (1.6.4)
rainbow (2.1.0)
rake (11.2.2, 10.4.2)
rdoc (4.2.1)
rspec (3.5.0)
rspec-core (3.5.3)
rspec-expectations (3.5.0)
rspec-its (1.2.0)
rspec-mocks (3.5.0)
rspec-support (3.5.0)
rubocop (0.36.0)
ruby-progressbar (1.8.1)
rubygems-bundler (1.4.4)
rubyntlm (0.6.0)
rubyzip (1.2.0)
rvm (1.11.3.9)
slop (3.6.0)
sslshake (1.0.12)
test-unit (3.1.5)
thor (0.19.1)
thread_safe (0.3.5)
train (0.19.0)
winrm (2.0.1)
winrm-fs (1.0.0)```
atomic111 commented 8 years ago

@cjbischoff thanks for reporting this, i will check this

chris-rock commented 8 years ago

This is a bug in InSpec. InSpec 0.32 works fine. The next version of InSpec 0.35.0 will include the fix.