From aea1451373ea4413b2bf2db820a4e12c481587be Mon Sep 17 00:00:00 2001
From: Allen Golbig <golbiga@gmail.com>
Date: Thu, 29 Sep 2022 12:56:00 -0400
Subject: [PATCH] fix[rule]: Fixed system_settings_ssh_disable

Fixed logic for system_settings_ssh_disable and added note.
---
 rules/system_settings/system_settings_rae_disable.yaml | 2 +-
 rules/system_settings/system_settings_ssh_disable.yaml | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/rules/system_settings/system_settings_rae_disable.yaml b/rules/system_settings/system_settings_rae_disable.yaml
index 47c6696c..4f3cd444 100644
--- a/rules/system_settings/system_settings_rae_disable.yaml
+++ b/rules/system_settings/system_settings_rae_disable.yaml
@@ -14,7 +14,7 @@ fix: |
   /usr/sbin/systemsetup -setremoteappleevents off
   /bin/launchctl disable system/com.apple.AEServer
   ----
-  NOTE: Systemsetup with -setremoteappleevents flag will fail unless you grant Full Disk Access to systemsetup or it's parent process. Requires UAMDM.
+  NOTE: Systemsetup with -setremoteappleevents flag will fail unless you grant Full Disk Access to systemsetup or it's parent process. Requires supervision.
 references:
   cce:
     - CCE-91970-4
diff --git a/rules/system_settings/system_settings_ssh_disable.yaml b/rules/system_settings/system_settings_ssh_disable.yaml
index 884c353f..c244fe0a 100644
--- a/rules/system_settings/system_settings_ssh_disable.yaml
+++ b/rules/system_settings/system_settings_ssh_disable.yaml
@@ -11,8 +11,10 @@ result:
 fix: |
   [source,bash]
   ----
+  /usr/sbin/systemsetup -f -setremotelogin off
   /bin/launchctl disable system/com.openssh.sshd
   ----
+  NOTE: Systemsetup with -setremotelogin flag will fail unless you grant Full Disk Access to systemsetup or it's parent process. Requires supervision.
 references:
   cce:
     - CCE-91984-5