The Red Hat Enterprise Linux operating system access control program must be configured to grant or deny system access to specific hosts and services.

An XCCDF Rule

Description

<VulnDiscussion>If the systems access control program is not configured with appropriate rules for allowing and denying access to system network resources, services may be accessible to unauthorized hosts.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-204628r603261_rule
Severity: Medium
References: CCI-000366
Updated: 8 months ago

If "firewalld" is installed and active on the system, configure rules for allowing specific services and hosts. 

If "firewalld" is not "active", enable "tcpwrappers" by configuring "/etc/hosts.allow" and "/etc/hosts.deny" to allow or deny access to specific hosts.

The Red Hat Enterprise Linux operating system access control program must be configured to grant or deny system access to specific hosts and services.

Description

Remediation - Manual Procedure