The Oracle Linux operating system access control program must be configured to grant or deny system access to specific hosts and services.

An XCCDF Rule

Description

<VulnDiscussion>If the systems access control program is not configured with appropriate rules for allowing and denying access to system network resources, services may be accessible to unauthorized hosts.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-221892r991589_rule
Severity: Medium
References: CCI-000366
Updated: 17 days ago

If "firewalld" is installed and active on the system, configure rules for allowing specific services and hosts. 

If "firewalld" is not "active", enable "tcpwrappers" by configuring "/etc/hosts.allow" and "/etc/hosts.deny" to allow or deny access to specific hosts.

The Oracle Linux operating system access control program must be configured to grant or deny system access to specific hosts and services.

Description

Remediation - Manual Procedure