An error occurred:

Check: AZLX-23-001000

Amazon Linux 2023 STIG: AZLX-23-001000 (in version v1 r1)

Title

Amazon Linux 2023 must have the sudo package installed. (Cat II impact)

Discussion

The "sudo" program is designed to allow a system administrator to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow system users to get their work done.

Check Content

Verify Amazon Linux 2023 has the sudo package installed with the following command: $ dnf list --installed sudo Installed Packages sudo.x86_64 1.9.15-1.p5.amzn2023.0.1 @System If the "sudo" package is not installed, this is a finding.

Fix Text

Configure Amazon Linux 2023 to have the sudo package installed with the following command: $ sudo dnf install -y sudo

Additional Identifiers

Rule ID: SV-274012r1120710_rule

Vulnerability ID: V-274012

Group Title: SRG-OS-000324-GPOS-00125

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002235

Prevent non-privileged users from executing privileged functions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-6(10)

Prohibit Non-privileged Users from Executing Privileged Functions