the-practical-linux-hardening-guide/lib/post_install_tasks/package_management.md at 67883368f981ca70dde3db0d688b359fac8b4aa0

CSEC_PUBLIC/the-practical-linux-hardening-guide

mirror of https://github.com/trimstray/the-practical-linux-hardening-guide.git synced 2025-12-06 17:22:51 +01:00

Files

trimstray d7f44ff54b added new chapter

- signed-off-by: trimstray <trimstray@gmail.com>

2019-02-20 13:57:16 +01:00

1.5 KiB

Raw Blame History

Post install tasks

Package management

ℹ️ Introduction

Package manager is a popular way to distribute software. It's also provide a privileged, central mechanism for the management of software on your operating system.

✴️ Check package signatures

RedHat/CentOS

# Edit '[main]' section in /etc/yum.conf
gpgcheck=1

Policy

Type	Severity	Reference
^OpenSCAP	^High	^{Ensure gpgcheck Enabled In Main yum Configuration}
^STIG
^CIS

✴️ Remove packages with known issues

RedHat/CentOS

Policy

Type	Severity	Reference	Comment
^OpenSCAP
^STIG
^CIS

✳️ Useful resources

☑️ Summary checklist

Item	True	False
	🔲	🔲
	🔲	🔲

1.5 KiB Raw Blame History Unescape Escape

Post install tasks

Package management

ℹ️ Introduction

✴️ Check package signatures

RedHat/CentOS

Policy

✴️ Remove packages with known issues

RedHat/CentOS

Policy

✳️ Useful resources

☑️ Summary checklist

1.5 KiB

Raw Blame History