← Back to SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

V-22408

CAT II (Medium)

Network interfaces must not be configured to allow user control.

Rule ID

SV-45718r1_rule

STIG

SUSE Linux Enterprise Server v11 for System z Security Technical Implementation Guide

Version

V1R12

CCIs

CCI-000225

Discussion

Configuration of network interfaces should be limited to privileged users. Manipulation of network interfaces may result in a Denial of Service or bypass of network security mechanisms.

Check Content

Check the system for user-controlled network interfaces.
# grep -i '^USERCONTROL=' /etc/sysconfig/network/ifcfg* | grep -i yes
If any results are returned with USERCONTROL set to yes, this is a finding.

Fix Text

Edit the configuration for the user-controlled interface and change the USERCONTROL=’yes’ value to ‘no’.