The Red Hat Enterprise Linux operating system must be configured so that all system device files are correctly labeled to prevent unauthorized modification.

An XCCDF Rule

Details
Profiles

Description

If an unauthorized or modified device is allowed to exist on the system, there is the possibility the system may perform unintended or unauthorized operations.

ID: SV-204479r853899_rule
Version: RHEL-07-020900
Severity: Medium
References: CCI-000318 CCI-000368 CCI-001812 CCI-001813 CCI-001814
Updated: 5 days ago

Remediation Templates

Run the following command to determine which package owns the device file:

# rpm -qf <filename>

The package can be reinstalled from a yum repository using the command:
# sudo yum reinstall <packagename>

Alternatively, the package can be reinstalled from trusted media using the command:

# sudo rpm -Uvh <packagename>

The Red Hat Enterprise Linux operating system must be configured so that all system device files are correctly labeled to prevent unauthorized modification.

Description

Remediation Templates

A Manual Procedure