STIGQter STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The tftp-server package must not be installed unless required.

DISA Rule

SV-208919r603263_rule

Vulnerability Number

V-208919

Group Title

SRG-OS-000095

Rule Version

OL6-00-000222

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The "tftp-server" package can be removed with the following command:

# yum erase tftp-server

Check Contents

Run the following command to determine if the "tftp-server" package is installed:

# rpm -q tftp-server

If the package is installed and not documented and approved by the ISSO, this is a finding.

Vulnerability Number

V-208919

Documentable

False

Rule Version

OL6-00-000222

Severity Override Guidance

Run the following command to determine if the "tftp-server" package is installed:

# rpm -q tftp-server

If the package is installed and not documented and approved by the ISSO, this is a finding.

Check Content Reference

M

Target Key

2928

Comments