SOL-11.1-020040 - The operating system must protect audit tools from unauthorized modification - 'pkg verify'


Failure to maintain system configurations may result in privilege escalation.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


The Software Installation Profile is required.

Configure the package system to ensure that digital signatures are verified.

# pfexec pkg set-property signature-policy verify

Check that package permissions are configured per vendor requirements.

# pfexec pkg verify

If any errors are reported unrelated to STIG changes, use:

# pfexec pkg fix

to bring configuration settings and permissions into factory compliance.

