STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:SV-230548r627750_rule
V-230548
SRG-OS-000480-GPOS-00227
RHEL-08-040284
CAT II
10
Configure RHEL 8 to disable the use of user namespaces by adding the following line to a file in the "/etc/sysctl.d" directory:
Note: User namespaces are used primarily for Linux containers. If containers are in use, this requirement is not applicable.
user.max_user_namespaces = 0
The system configuration files need to be reloaded for the changes to take effect. To reload the contents of the files, run the following command:
$ sudo sysctl --system
Verify RHEL 8 disables the use of user namespaces with the following commands:
Note: User namespaces are used primarily for Linux containers. If containers are in use, this requirement is not applicable.
$ sudo sysctl user.max_user_namespaces
user.max_user_namespaces = 0
If the returned line does not have a value of "0", or a line is not returned, this is a finding.
V-230548
False
RHEL-08-040284
Verify RHEL 8 disables the use of user namespaces with the following commands:
Note: User namespaces are used primarily for Linux containers. If containers are in use, this requirement is not applicable.
$ sudo sysctl user.max_user_namespaces
user.max_user_namespaces = 0
If the returned line does not have a value of "0", or a line is not returned, this is a finding.
M
2921