Closed loresuso closed 9 months ago
cc @incertum @darryk10
Hello @incertum, thanks for your valuable feedback as usual! Comments addressed
Comparing 8977ff24cb2c9f12c8334801cb869c7eda97ff0f
with latest tag falco-incubating-rules-2.0.0
Minor changes:
Adding ssh keys to authorized_keys
has been addedLGTM label has been added.
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: darryk10, incertum, loresuso
The full list of commands accepted by this bot can be found here.
The pull request process is described here
What type of PR is this?
/kind feature
Any specific area of the project related to this PR?
/area rules
Proposed rule maturity level
/area maturity-incubating
What this PR does / why we need it: Adding ssh keys to authorized_keys file is a common persistence/escalation technique, as reported here. Read rule's description for further details.
Which issue(s) this PR fixes:
Fixes #
Special notes for your reviewer: