The Photon operating system TDNF package management tool must cryptographically verify the authenticity of all software packages during installation.

An XCCDF Rule

Description

<VulnDiscussion>Installation of any nontrusted software, patches, service packs, device drivers, or operating system components can significantly affect the overall security of the operating system. This requirement ensures the software has not been tampered with and has been provided by a trusted vendor.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-258846r933599_rule
Severity: High
References: CCI-001749
Updated: 8 months ago

Navigate to and open:

/etc/tdnf/tdnf.conf

Add or update the following line:
gpgcheck=1

The Photon operating system TDNF package management tool must cryptographically verify the authenticity of all software packages during installation.

Description

Remediation - Manual Procedure