Support hardened permissions of additional /etc/ssh_host_* key files

Description

During checking out a client's systems, we found that there are two additional key files in /etc/ssh that are not hardened by SIMP out of the box. We need to control these like we do with /etc/ssh/ssh_host_dsa_key

The files are:

  • /etc/ssh/ssh_host_ecdsa_key

  • /etc/ssh/ssh_host_ed25519_key

Acceptance Criteria

None

Labels

None

Epic Link

None

Story Points

None

Components

Affects versions

Priority

Medium
Configure