Navigate

Check: RHEL-09-432010

RHEL 9 STIG: RHEL-09-432010 (in versions v1 r3 through v1 r1)

Title

RHEL 9 must have the sudo package installed. (Cat II impact)

Discussion

"sudo" is a program designed to allow a system administrator to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow system users to get their work done.

Check Content

Verify that RHEL 9 sudo package is installed with the following command: $ sudo dnf list --installed sudo Example output: sudo.x86_64 1.9.5p2-7.el9 If the "sudo" package is not installed, this is a finding.

Fix Text

The sudo package can be installed with the following command: $ sudo dnf install sudo

Additional Identifiers

Rule ID: SV-258083r926236_rule

Vulnerability ID: V-258083

Group Title: SRG-OS-000324-GPOS-00125

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-002235	The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
AC-6 (10)	Prohibit Non-Privileged Users From Executing Privileged Functions