Skip to content

The Photon operating system RPM package management tool must cryptographically verify the authenticity of all software packages during installation.

An XCCDF Rule

Description

Installation of any nontrusted software, patches, service packs, device drivers, or operating system components can significantly affect the overall security of the operating system. Cryptographically verifying the authenticity of all software packages during installation ensures the software has not been tampered with and has been provided by a trusted vendor.

ID
SV-256531r982212_rule
Version
PHTN-30-000060
Severity
Medium
References
Updated

Remediation Templates

A Manual Procedure

Navigate to and open:

/etc/tdnf/tdnf.conf

Remove any existing "gpgcheck" setting and add the following line:

gpgcheck=1