The system must verify that package updates are digitally signed.

An XCCDF Rule

Description

Digitally signed packages ensure that the source of the package can be identified.

ID: SV-219969r1016281_rule
Version: SOL-11.1-020020
Severity: Medium
References: CCI-001749 CCI-003992
Updated: about 2 months ago

Remediation Templates

The Software Installation Profile is required.

Configure the package system to ensure that digital signatures are verified.

# pfexec pkg set-property signature-policy verify