RHEL 9 must be configured to disable the Controller Area Network kernel module.
An XCCDF Rule
Description
Disabling Controller Area Network (CAN) protects the system against exploitation of any flaws in its implementation.
- ID
- SV-257805r1044856_rule
- Version
- RHEL-09-213050
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
To configure the system to prevent the can kernel module from being loaded, add the following lines to the file /etc/modprobe.d/can.conf (or create can.conf if it does not exist):
install can /bin/false
blacklist can