The Red Hat Enterprise Linux operating system must be configured so that the file integrity tool is configured to verify extended attributes.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>Extended attributes in file systems are used to contain arbitrary data and file metadata with security implications.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-204499r880858_rule
Severity: Low
References: CCI-000366
Updated: 8 months ago

Configure the file integrity tool to check file and directory extended attributes. 

If AIDE is installed, ensure the "xattrs" rule is present on all uncommented file and directory selection lists.

The Red Hat Enterprise Linux operating system must be configured so that the file integrity tool is configured to verify extended attributes.

Description

Remediation - Manual Procedure