← Back to Red Hat Enterprise Linux 9 Security Technical Implementation Guide

V-258140

CAT II (Medium)

RHEL 9 must have the rsyslog package installed.

Rule ID

SV-258140r1106460_rule

STIG

Red Hat Enterprise Linux 9 Security Technical Implementation Guide

Version

V2R8

CCIs

CCI-000154 CCI-001851

Discussion

rsyslogd is a system utility providing support for message logging. Support for both internet and Unix domain sockets enables this utility to support both local and remote logging. Couple this utility with "gnutls" (which is a secure communications library implementing the SSL, TLS, and DTLS protocols), to create a method to securely encrypt and offload auditing. Satisfies: SRG-OS-000479-GPOS-00224, SRG-OS-000051-GPOS-00024, SRG-OS-000480-GPOS-00227

Check Content

Verify RHEL 9 has the rsyslog package installed with the following command:

$ dnf list --installed rsyslog

Example output:

rsyslog.x86_64          8.2102.0-101.el9_0.1

If the "rsyslog" package is not installed, this is a finding.

Fix Text

Install the rsyslog package with the following command:
 
$ sudo dnf install rsyslog