Amazon Linux 2023 must have SSH installed.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-274038 | AZLX-23-001180 | SV-274038r1120102_rule | CCI-001941 | high |
| Description | ||||
| Without protection of the transmitted information, confidentiality and integrity may be compromised because unprotected communications can be intercepted and either read or altered. Satisfies: SRG-OS-000112-GPOS-00057, SRG-OS-000113-GPOS-00058, SRG-OS-000423-GPOS-00187, SRG-OS-000424-GPOS-00188, SRG-OS-000425-GPOS-00189, SRG-OS-000426-GPOS-00190 | ||||
| STIG | Date | |||
| Amazon Linux 2023 Security Technical Implementation Guide | 2026-02-27 | |||
Details
Check Text (C-274038r1120102_chk)
Verify Amazon Linux 2023 has the openssh-server package installed with the following command:
$ dnf list --installed openssh-server
Installed Packages
openssh-server.x86_64 8.7p1-8.amzn2023.0.13 @amazonlinux
If the "openssh-server" package is not installed, this is a finding.
Fix Text (F-78034r1120101_fix)
Configure Amazon Linux 2023 to have the openssh-server package installed with the following command:
$ sudo dnf install -y openssh-server