33d1b71aa0
The tag for V-72267 was set to 'implemented' in an interesting copy/paste failure. It should be 'sshd'. Change-Id: Ic9dfc1bf50f7f331186b4544f76578f3d0932818
735 B
735 B
---id: V-72267 status: implemented tag: sshd ---
The Compression configuration is set to
delayed in /etc/ssh/sshd_config and sshd is
restarted.
Deployers can choose another option by setting the following Ansible variable:
security_sshd_compression: 'no'Note
The following are the available settings for Compression
in the ssh configuration file:
delayed: Compression is enabled after authentication.no: Compression is disabled.yes: Compression is enabled during authentication and during the session (not allowed by the STIG).
The delayed option balances security with performance
and is an approved option in the STIG.