Guide to the Secure Configuration of Red Hat Enterprise Linux 10
Rules, Groups, and Values defined within the XCCDF Benchmark
-
System Tooling / Utilities
The following checks evaluate the system for recommended base packages -- both for installation and removal.Group -
Xinetd
The <code>xinetd</code> service acts as a dedicated listener for some network services (mostly, obsolete ones) and can be used to provide access co...Group -
Restrict Serial Port Root Logins
To restrict root logins on serial ports, ensure lines of this form do not appear in <code>/etc/securetty</code>: <pre>ttyS0 ttyS1</pre> ...Rule Medium Severity -
Uninstall xinetd Package
Thexinetdpackage can be removed with the following command:$ sudo dnf remove xinetd
Rule Low Severity -
Rlogin, Rsh, and Rexec
The Berkeley r-commands are legacy services which allow cleartext remote access and have an insecure trust model.Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules