RHEL 9 must not have the quagga package installed.

STIG ID: RHEL-09-215065  |  SRG: SRG-OS-000480-GPOS-00227 |  Severity: medium |  CCI: CCI-000366 |  Vulnerability Id: V-257836

Vulnerability Discussion

Quagga is a network routing software suite providing implementations of Open Shortest Path First (OSPF), Routing Information Protocol (RIP), Border Gateway Protocol (BGP) for Unix and Linux platforms.

If there is no need to make the router software available, removing it provides a safeguard against its activation.

Check

Verify that the quagga package is not installed with the following command:

$ sudo dnf list --installed quagga

Error: No matching Packages to list

If the "quagga" package is installed, and is not documented with the information system security officer (ISSO) as an operational requirement, this is a finding.

Fix

Remove the quagga package with the following command:

$ sudo dnf remove quagga