OL 9 must not have the quagga package installed.

STIG ID: OL09-00-000140  |  SRG: SRG-OS-000480-GPOS-00227 |  Severity: medium |  CCI: CCI-000366 |  Vulnerability Id: V-271464

Vulnerability Discussion

Quagga is a network routing software suite providing implementations of Open Shortest Path First (OSPF), Routing Information Protocol (RIP), Border Gateway Protocol (BGP) for Unix and Linux platforms.

If there is no need to make the router software available, removing it provides a safeguard against its activation.

Check

Verify that OL 9 does not have the quagga package installed with the following command:

$ dnf list --installed quagga
Error: No matching Packages to list

If the quagga package is installed and is not documented with the information system security officer (ISSO) as an operational requirement, this is a finding.

Fix

Remove the quagga package with the following command:

$ sudo dnf remove quagga
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.