STIGQter: STIG Summary: Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 10 Mar 2021: STIGQter: STIG Summary: Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 10 Mar 2021:SV-238375r654300_rule
V-238375
SRG-OS-000481-GPOS-000481
UBTU-20-010455
CAT II
10
List all the wireless interfaces with the following command:
$ ls -L -d /sys/class/net/*/wireless | xargs dirname | xargs basename
For each interface, configure the system to disable wireless network interfaces with the following command:
$ sudo ifdown <interface name>
For each interface listed, find their respective module with the following command:
$ basename $(readlink -f /sys/class/net/<interface name>/device/driver)
where <interface name> must be substituted by the actual interface name.
Create a file in the "/etc/modprobe.d" directory and for each module, add the following line:
install <module name> /bin/true
For each module from the system, execute the following command to remove it:
$ sudo modprobe -r <module name>
Note: This requirement is Not Applicable for systems that do not have physical wireless network radios.
Verify that there are no wireless interfaces configured on the system with the following command:
$ ls -L -d /sys/class/net/*/wireless | xargs dirname | xargs basename
If a wireless interface is configured and has not been documented and approved by the ISSO, this is a finding.
V-238375
False
UBTU-20-010455
Note: This requirement is Not Applicable for systems that do not have physical wireless network radios.
Verify that there are no wireless interfaces configured on the system with the following command:
$ ls -L -d /sys/class/net/*/wireless | xargs dirname | xargs basename
If a wireless interface is configured and has not been documented and approved by the ISSO, this is a finding.
M
5318