GEN008800 - The package management tool must cryptographically verify the authenticity of packages during installation - '/etc/yum.conf'

Information

To prevent the installation of software from unauthorized sources, the system package management tool must use cryptographic algorithms to verify the packages are authentic.

Solution

Edit the YUM configuration containing 'gpgcheck=0' and set the value to '1'.

See Also

http://iasecontent.disa.mil/stigs/zip/U_RedHat_5_V1R18_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-5(3), CAT|III, CCI|CCI-000351, Group-ID|V-22588, Rule-ID|SV-26990r2_rule, STIG-ID|GEN008800, Vuln-ID|V-22588

Plugin: Unix

Control ID: 90cbd64b291695acfb8d3ef5329ce8b7a65f2b96fab66a3dcf712636be7060dc