Title

RHEL 9 must not have the quagga package installed. (Cat II impact)

Discussion

Quagga is a network routing software suite providing implementations of Open Shortest Path First (OSPF), Routing Information Protocol (RIP), Border Gateway Protocol (BGP) for Unix and Linux platforms. If there is no need to make the router software available, removing it provides a safeguard against its activation.

Check Content

Verify that the quagga package is not installed with the following command: $ sudo dnf list --installed quagga Error: No matching Packages to list If the "quagga" package is installed, and is not documented with the information system security officer (ISSO) as an operational requirement, this is a finding.

Fix Text

Remove the quagga package with the following command: $ sudo dnf remove quagga

Additional Identifiers

Rule ID: SV-257836r925495_rule

Vulnerability ID: V-257836

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.