UBTU-18-010021 – The Ubuntu operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) – service

Details

Without the use of automated mechanisms to scan for security flaws on a continuous and/or periodic basis, the operating system or other system components may remain vulnerable to the exploits presented by undetected software flaws.

To support this requirement, the Ubuntu operating system may have an integrated solution incorporating continuous scanning using HBSS and periodic scanning using other tools, as specified in the requirement.

Solution

Configure the Ubuntu operating system to use ENSLTP.

Install the mfetp package,

# sudo apt-get install mfetp

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_CAN_Ubuntu_18-04_LTS_V2R4_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Unix.

References

800-53|SI-2(2)
CAT|II
CCI|CCI-001233
Rule-ID|SV-219159r610963_rule
STIG-ID|UBTU-18-010021
STIG-Legacy|SV-109649
STIG-Legacy|V-100545
Vuln-ID|V-219159

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles