STIGQter STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 1 Release: 17 Benchmark Date: 25 Oct 2019: The tftp-server package must not be installed unless required.

DISA Rule

SV-64773r3_rule

Vulnerability Number

V-50567

Group Title

SRG-OS-000095

Rule Version

OL6-00-000222

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

The "tftp-server" package can be removed with the following command:

# yum erase tftp-server

Check Contents

Run the following command to determine if the "tftp-server" package is installed:

# rpm -q tftp-server

If the package is installed and not documented and approved by the ISSO, this is a finding.

Vulnerability Number

V-50567

Documentable

False

Rule Version

OL6-00-000222

Severity Override Guidance

Run the following command to determine if the "tftp-server" package is installed:

# rpm -q tftp-server

If the package is installed and not documented and approved by the ISSO, this is a finding.

Check Content Reference

M

Target Key

2208

Comments