Uninstall net-snmp Package
An XCCDF Rule
Description
The net-snmp
package provides the snmpd service.
The net-snmp
package can be removed with the following command:
$ sudo dnf erase net-snmp
Rationale
If there is no need to run SNMP server software, removing the package provides a safeguard against its activation.
- ID
- xccdf_org.ssgproject.content_rule_package_net-snmp_removed
- Severity
- Unknown
- Updated
Remediation - Puppet
include remove_net-snmp
class remove_net-snmp {
package { 'net-snmp':
ensure => 'purged',
}
Remediation - Shell Script
# CAUTION: This remediation script will remove net-snmp
# from the system, and may remove any packages
# that depend on net-snmp. Execute this
# remediation AFTER testing on a non-production
# system!
Remediation - Anaconda Pre-Install Instructions
package --remove=net-snmp
Remediation - Ansible
- name: Ensure net-snmp is removed
package:
name: net-snmp
state: absent
tags:
- PCI-DSSv4-2.2.4