Details

Systems need to have package manager repositories properly configured to ensure they receive the latest patches and updates.

Rationale:

If a system’s package manager repositories are misconfigured, important patches may not be identified, or a rogue repository could introduce compromised software.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure your package manager repositories according to your vendor.

As an alternative, package manager repositories from [nginx.org](https://nginx.org/) are available for a variety of Linux platforms.

Supportive Information

The following resource is also helpful.

• https://workbench.cisecurity.org/files/2275https://workbench.cisecurity.org/files/2275https://workbench.cisecurity.org/files/2275https://workbench.cisecurity.org/files/2275

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Unix.

References

• 800-53|SI-2c.
• CSCv7|3.4
• CSCv7|3.5

Source

• Tenable.com/audits