Title

RHEL 9 must have the nss-tools package installed. (Cat II impact)

Discussion

Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Install the "nss-tools" package to install command-line tools to manipulate the NSS certificate and key database.

Check Content

Verify that RHEL 9 has the nss-tools package installed with the following command: $ dnf list --installed nss-tools Example output: nss-tools.x86_64 3.71.0-7.el9 If the "nss-tools" package is not installed, this is a finding.

Fix Text

The nss-tools package can be installed with the following command: $ sudo dnf install nss-tools

Additional Identifiers

Rule ID: SV-257840r925507_rule

Vulnerability ID: V-257840

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.