Remove StrictHostKeyChecking=no and implement proper host key verification
Addresses security concerns from OWASP audit by enforcing strict host key verification. Changes: - Replaced StrictHostKeyChecking=accept-new with yes in pkg/container and devops. - Removed insecure host key verification from pkg/ansible. - Added synchronous host key discovery using ssh-keyscan during VM boot. - Updated Boot lifecycle to wait for host key verification. - Handled missing known_hosts file in pkg/ansible. - Refactored hardcoded SSH port to DefaultSSHPort constant. - Fixed formatting issues identified by QA check.
This commit is contained in:
Snider
parent
d4d26a6ba2
commit
4a690d49f0
1 changed files with 0 additions and 1 deletions
|
|
@ -48,7 +48,6 @@ func (m *Medium) path(p string) string {
|
|||
return clean
|
||||
}
|
||||
|
||||
|
||||
// Join cleaned relative path with root
|
||||
return filepath.Join(m.root, clean)
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue