Ensure LDAP client is not installed

An XCCDF Rule

Details
Profiles
Prose

Description

The Lightweight Directory Access Protocol (LDAP) is a service that provides a method for looking up information from a central database. The openldap-clients package can be removed with the following command:

$ sudo dnf erase openldap-clients

Rationale

If the system does not need to act as an LDAP client, it is recommended that the software is removed to reduce the potential attack surface.

ID: xccdf_org.ssgproject.content_rule_package_openldap-clients_removed
Severity: Low
Updated: 8 months ago