RHEL 9 must not have the sendmail package installed.
An XCCDF Rule
Description
The sendmail software was not developed with security in mind, and its design prevents it from being effectively contained by SELinux. Postfix must be used instead. Satisfies: SRG-OS-000480-GPOS-00227, SRG-OS-000095-GPOS-00049
- ID
- SV-257827r1044892_rule
- Version
- RHEL-09-215020
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Remove the sendmail package with the following command:
$ sudo dnf remove sendmail