ANSSI Hygiène R7

Gestion des clés SSH

UnveilScan findings mapped to this control

The scanner emits 3 distinct findings on this control. Click "Scan a domain" below to see which of them currently apply to your site, with copy-paste remediation snippets (nginx, Apache, DNS BIND, web-server config).

web.leak.ssh_authorized_keys ⏱ 15 min

WEB — Leak.ssh authorized keys

Risk if ignored: Low impact, mostly a maturity signal. Fix when you next touch this area.

operational

Also maps to 1 other control

ISO 27001:2022 A.5.17 — Authentication information

web.leak.ssh_id_dsa ⏱ 15 min

WEB — Leak.ssh id dsa

Risk if ignored: Low impact, mostly a maturity signal. Fix when you next touch this area.

operational

Also maps to 2 other controls

ISO 27001:2022 A.5.17 — Authentication information
PCI-DSS 4.0 3.3.1 — Sensitive authentication data

web.leak.ssh_id_rsa ⏱ 2h

WEB — Leak.ssh id rsa

Risk if ignored: SSH private key is downloadable — anyone with the file can log in as that key's owner.

security

Also maps to 2 other controls

ISO 27001:2022 A.5.17 — Authentication information
PCI-DSS 4.0 3.3.1 — Sensitive authentication data