Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 7
System Settings
File Permissions and Masks
Restrict Programs from Dangerous Execution Patterns
Enable ExecShield
Enable ExecShield via sysctl
Enable ExecShield via sysctl
An XCCDF Rule
Details
Profiles
Prose
Enable ExecShield via sysctl
Medium Severity
By default on Red Hat Enterprise Linux 7 64-bit systems, ExecShield is enabled and can only be disabled if the hardware does not support ExecShield or is disabled in
/etc/default/grub
.