dccce1d5cc
This patch gets the docs adjusted to work with the new RHEL 7 STIG version 1 release. The new STIG release has changed all of the numbering, but it maintains a link to (most) of the old STIG IDs in the XML. Closes-bug: 1676865 Change-Id: I65023fe63163c9804a3aec9dcdbf23c69bedb604
937 B
---id: V-72237 status: implemented tag: sshd ---
The ClientAliveInterval configuration is set to
600 in /etc/ssh/sshd_config and sshd is
restarted.
Deployers can adjust the length of the interval by changing the following Ansible variable:
security_sshd_client_alive_interval: 600Note
The STIG requires that ClientAliveInterval is set to 600
and ClientAliveCountMax is set to zero, which sets a 10
minute session timeout. If no data is transferred in a 10 minute period,
the session is disconnected.
The ClientAliveInterval specifies how long the ssh
daemon waits before it sends a message to the client to see if it is
still alive. The ClientAliveCountMax specifies how many of
these messages are sent without receiving a response.
Deployers should refer to stig-V-72241 to customize the
ClientAliveCountMax setting.