To maintain an appropriate level of security, configure Secure Shell (SSH) key file permissions on VMware virtual appliance host machines.

About this task

Limit SSH public host key file and group permissions to root on virtual appliance host machines. These permissions are set by default, but you should review them to ensure that they are set correctly.

Procedure

  1. View the public host key files, located in /etc/ssh/*key.pub.
  2. Verify that these files are owned by root, that the group is owned by root, and that the files have permissions set to 0644.

    The permissions are (-rw-r--r--).

  3. Close all files.
  4. View the public host key files, located in /etc/ssh/*key.
  5. Verify that these file are owned by root, that the group is owned by root, and that the files have permissions set to 0600.

    The permissions are (-rw-------).

  6. Close all files.