AlmaLinux OS 9 must disable remote management of the chrony daemon.
An XCCDF Rule
Description
Not exposing the management interface of the chrony daemon on the network reduces the attack surface.
- ID
- SV-269332r1050214_rule
- Version
- ALMA-09-028510
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure AlmaLinux OS 9 to disable remote management of the chrony daemon by adding/modifying the following line in the /etc/chrony.conf file:
cmdport 0