CIS benchmarking requests/requires the mode of '/etc/ssh/sshhost*_key' files be a mode of '0600'. This change allows for managing the owner, group and mode of the server's keys.
Unfortunately, I don't have any experience writing spec tests so it'll take me some time to figure out how to do so. In the mean time, I welcome comments and improvements to the merge request.
CIS benchmarking requests/requires the mode of '/etc/ssh/sshhost*_key' files be a mode of '0600'. This change allows for managing the owner, group and mode of the server's keys.
Unfortunately, I don't have any experience writing spec tests so it'll take me some time to figure out how to do so. In the mean time, I welcome comments and improvements to the merge request.