DISA just released Version 2 Release 1 of the RHEL 7 STIG. It appears they fixed their content on this one (SV-86881r2_rule) so it should match the SSG content.

-----Original Message----- From: Shawn Wells shawn@redhat.com Sent: Wednesday, September 26, 2018 11:22 AM To: SCAP Security Guide scap-security-guide@lists.fedorahosted.org Subject: [Non-DoD Source] Re: EXTERNAL: Re: False positive message for sshd key file permission

All active links contained in this email were disabled. Please verify the identity of the sender, and confirm the authenticity of all links contained within the message prior to copying and pasting the address to a Web browser.

----

On 9/25/18 8:45 AM, Albrecht, Thomas C wrote:

I’d leave it, since something seems to revert the permissions later back to 0640. (Probably a package update, but I haven’t researched it yet.).

+1, agree with Tom. _______________________________________________ scap-security-guide mailing list -- scap-security-guide@lists.fedorahosted.org To unsubscribe send an email to scap-security-guide-leave@lists.fedorahosted.org Fedora Code of Conduct: Caution-https://getfedora.org/code-of-conduct.html List Guidelines: Caution-https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: Caution-https://lists.fedorahosted.org/archives/list/scap-security-guide@lists.fedor...