STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← CM-2 (4) — Unauthorized Software

CCI-000305

Definition

The organization develops a list of software programs not authorized to execute on the information system.

Parent Control

CM-2 (4)Unauthorized SoftwareConfiguration Management

Linked STIG Checks (7)

V-12005CAT IIInetd and xinetd must be disabled or removed if no network services utilizing them are enabled.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-12049CAT IINetwork analysis tools must not be installed.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-22430CAT IIThe portmap or rpcbind service must not be installed unless needed.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-22431CAT IIThe rshd service must not be installed.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-22433CAT IIThe rlogind service must not be installed.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-22434CAT IIThe rexecd service must not be installed.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation GuideV-23953CAT IIThe ldd command must be disabled unless it protects against the execution of untrusted files.SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide