Skip to content

Commit

Permalink
privilege separation deprecated
Browse files Browse the repository at this point in the history
  • Loading branch information
@micheelengronne
micheelengronne committed May 22, 2020
1 parent c5f887f commit fb6870c
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions controls/sshd_spec.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -207,9 +207,9 @@
control 'sshd-16' do
impact 1.0
title 'Server: Use privilege separation'
desc 'UsePrivilegeSeparation is an option, when enabled will allow the OpenSSH server to run a small (necessary) amount of code as root and the of the code in a chroot jail environment. This enables ssh to deal incoming network traffic in an unprivileged child process to avoid privilege escalation by an attacker.'
desc 'UsePrivilegeSeparation is deprecated.'
describe sshd_config(sshd_custom_path + '/sshd_config') do
its('UsePrivilegeSeparation') { should eq(sshd_valid_privseparation) }
its('UsePrivilegeSeparation') { should eq nil }
end
end

Expand Down

0 comments on commit fb6870c

Please sign in to comment.