Navigate

Check: RHEL-09-432010

RHEL 9 STIG: RHEL-09-432010 (in version v2 r3)

Title

RHEL 9 must have the sudo package installed. (Cat II impact)

Discussion

"sudo" is a program designed to allow a system administrator to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow system users to get their work done.

Check Content

Verify that RHEL 9 sudo package is installed with the following command: $ dnf list --installed sudo Example output: sudo.x86_64 1.9.5p2-7.el9 If the "sudo" package is not installed, this is a finding.

Fix Text

The sudo package can be installed with the following command: $ sudo dnf install sudo

Additional Identifiers

Rule ID: SV-258083r1045168_rule

Vulnerability ID: V-258083

Group Title: SRG-OS-000324-GPOS-00125

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-002235	Prevent non-privileged users from executing privileged functions.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-6(10)	Prohibit Non-privileged Users from Executing Privileged Functions