STIGQter: STIG Summary: Oracle Linux 7 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Oracle Linux 7 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-221856r603260_rule
V-221856
SRG-OS-000074-GPOS-00042
OL07-00-040390
CAT I
10
Remove all Protocol lines that reference version "1" in "/etc/ssh/sshd_config" (this file may be named differently or be in a different location if using a version of SSH that is provided by a third-party vendor). The "Protocol" line must be as follows:
Protocol 2
The SSH service must be restarted for changes to take effect.
Check the version of the operating system with the following command:
# cat /etc/oracle-release
If the release is 7.4 or newer this requirement is Not Applicable.
Verify the SSH daemon is configured to only use the SSHv2 protocol.
Check that the SSH daemon is configured to only use the SSHv2 protocol with the following command:
# grep -i protocol /etc/ssh/sshd_config
Protocol 2
#Protocol 1,2
If any protocol line other than "Protocol 2" is uncommented, this is a finding.
V-221856
False
OL07-00-040390
Check the version of the operating system with the following command:
# cat /etc/oracle-release
If the release is 7.4 or newer this requirement is Not Applicable.
Verify the SSH daemon is configured to only use the SSHv2 protocol.
Check that the SSH daemon is configured to only use the SSHv2 protocol with the following command:
# grep -i protocol /etc/ssh/sshd_config
Protocol 2
#Protocol 1,2
If any protocol line other than "Protocol 2" is uncommented, this is a finding.
M
4089