Details
RPM has the capability of verifying installed packages by comparing the installed files against the file information stored in the package.
Rationale:
Verifying packages gives a system administrator the ability to detect if package files were changed, which could indicate that a valid binary was overwritten with a trojaned binary.
Solution
Address unexpected discrepancies identified in the audit step.
Default Value:
OS Default: N/A
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system Unix.