Ensure permissions on ssh public key fileID: oval:org.secpod.oval:def:70694 | Date: (C)2021-04-20 (M)2023-12-20 |
Class: COMPLIANCE | Family: unix |
An SSH public key is one of two files used in SSH public key authentication. In this authentication method, a public key is a key that can be used for verifying digital signatures generated using a corresponding private key. Only a public key that corresponds to a private key will be able to authenticate successfully.
Rationale:
If a public host key file is modified by an unauthorized user, the SSH service may be compromised.