Skip to content
ATO Pathways
  Log In

Guide to the Secure Configuration of Red Hat Enterprise Linux 8

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Don't target root user in the sudoers file

    The targeted users of a user specification should be, as much as possible, non privileged users (i.e.: non-root). User specifications have to expl...
    Rule Medium Severity
    Show

  • Ensure invoking users password for privilege escalation when using sudo

    The sudoers security policy requires that users authenticate themselves before they can use sudo. When sudoers requires authentication, it validate...
    Rule Medium Severity
    Show

  • System Tooling / Utilities

    The following checks evaluate the system for recommended base packages -- both for installation and removal.
    Group
    Show

  • faildelay_delay

    Delay next login attempt after a failed login
    Value
    Show

  • Install binutils Package

    The binutils package can be installed with the following command: 
    $ sudo yum install binutils
    Rule Medium Severity
    Show

  • Install dnf-plugin-subscription-manager Package

    The <code>dnf-plugin-subscription-manager</code> package can be installed with the following command: <pre> $ sudo yum install dnf-plugin-subscript...
    Rule Medium Severity
    Show

  • Ensure gnutls-utils is installed

    The gnutls-utils package can be installed with the following command: 
    $ sudo yum install gnutls-utils
    Rule Medium Severity
    Show

  • Install libcap-ng-utils Package

    The libcap-ng-utils package can be installed with the following command: 
    $ sudo yum install libcap-ng-utils
    Rule Medium Severity
    Show

  • Ensure nss-tools is installed

    The nss-tools package can be installed with the following command: 
    $ sudo yum install nss-tools
    Rule Medium Severity
    Show

  • Install openscap-scanner Package

    The openscap-scanner package can be installed with the following command: 
    $ sudo yum install openscap-scanner
    Rule Medium Severity
    Show

  • Install rear Package

    The rear package can be installed with the following command: 
    $ sudo yum install rear
    Rule Medium Severity
    Show

  • Install rng-tools Package

    The rng-tools package can be installed with the following command: 
    $ sudo yum install rng-tools
    Rule Low Severity
    Show

  • Install scap-security-guide Package

    The scap-security-guide package can be installed with the following command: 
    $ sudo yum install scap-security-guide
    Rule Medium Severity
    Show

  • Install subscription-manager Package

    The subscription-manager package can be installed with the following command: 
    $ sudo yum install subscription-manager
    Rule Medium Severity
    Show

  • Install tar Package

    The tar package can be installed with the following command: 
    $ sudo yum install tar
    Rule Medium Severity
    Show

  • Install vim Package

    The vim-enhanced package can be installed with the following command: 
    $ sudo yum install vim-enhanced
    Rule Low Severity
    Show

  • Uninstall abrt-addon-ccpp Package

    The abrt-addon-ccpp package can be removed with the following command: 
    $ sudo yum erase abrt-addon-ccpp
    Rule Low Severity
    Show

  • pwhistory_remember

    Prevent password re-use using password history lookup
    Value
    Show

  • Uninstall abrt-addon-kerneloops Package

    The abrt-addon-kerneloops package can be removed with the following command: 
    $ sudo yum erase abrt-addon-kerneloops
    Rule Low Severity
    Show

  • Uninstall abrt-cli Package

    The abrt-cli package can be removed with the following command: 
    $ sudo yum erase abrt-cli
    Rule Low Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules