Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Virtualization 4
System Settings
Kernel Configuration
Disable kernel support for MISC binaries
Disable kernel support for MISC binaries
An XCCDF Rule
Details
Profiles
Prose
Disable kernel support for MISC binaries
Medium Severity
Enabling
CONFIG_BINFMT_MISC
makes it possible to plug wrapper-driven binary formats into the kernel. This is specially useful for programs that need an interpreter to run like Java, Python and DOS emulators. Once you have registered such a binary class with the kernel, you can start one of those programs simply by typing in its name at a shell prompt. The configuration that was used to build kernel is available at
/boot/config-*
. To check the configuration value for
CONFIG_BINFMT_MISC
, run the following command:
grep CONFIG_BINFMT_MISC /boot/config-*
Configs with value 'n' are not explicitly set in the file, so either commented lines or no lines should be returned.