GEN006565 - The system package management tool must be used to verify system software periodically.

Information

Verification using the system package management tool can be used to determine that system software has not been tampered with.

This requirement is not applicable to systems not using package management tools.

Solution

Add a cron job to run an rpm verification command such as:
rpm -qVa | awk '$2!='c' {print $0}'

For packages which failed verification:
If the package is not necessary for operations, remove it from the system.

If the package is necessary for operations, re-install the package.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

References: 800-53|CM-6b., 800-53|SA-10(1), CAT|II, CCI|CCI-000366, CCI|CCI-000698, Rule-ID|SV-218667r603259_rule, STIG-ID|GEN006565, STIG-Legacy|SV-63667, STIG-Legacy|V-22506, Vuln-ID|V-218667

Plugin: Unix

Control ID: eedef5f6c6ccf6b0619b1da51935a3f33c3c74a2b684882efea7e7d6ac10edb3