Check: OL6-00-000291
Oracle Linux 6 STIG:
OL6-00-000291
(in versions v2 r7 through v1 r9)
Title
The xorg-x11-server-common (X Windows) package must not be installed, unless required. (Cat III impact)
Discussion
Unnecessary packages should not be installed to decrease the attack surface of the system.
Check Content
To ensure the X Windows package group is removed, run the following command: $ rpm -qi xorg-x11-server-common The output should be: package xorg-x11-server-common is not installed If it is not, this is a finding.
Fix Text
Removing all packages which constitute the X Window System ensures users or malicious software cannot start X. To do so, run the following command: # yum groupremove "X Window System"
Additional Identifiers
Rule ID: SV-209023r793744_rule
Vulnerability ID: V-209023
Group Title: SRG-OS-000480
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |