SSHD Security Compliance

The following sshd_config file located in the /etc/ssh directory has STIG compliance settings as outlined in NIST SP 800-53 R4 The only setting that is not configures it the 'PermitRootLogin'. I kept that as 'yes' to prevent accidental lock out if you have not configured additional SSH users on the system. The correct setting should read PermitRootLogin no
# running from inetd
# Port 2200
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key

# ######...			
More