Detections
Analytics
RHEL-10-700890 - RHEL 10 must disable the graphical user interface autorunner unless required.
Information
Automatically running applications when media is inserted allows for the easy introduction of unknown data, thereby facilitating malicious activity.Satisfies: SRG-OS-000114-GPOS-00059, SRG-OS-000378-GPOS-00163
Solution
Configure RHEL 10 GNOME to disable autorunning of removable media.Note: The example below is using the database "local" for the system. If the system is using another database in "/etc/dconf/profile/user", the file should be created under the appropriate subdirectory.
Update the "/etc/dconf/db/local.d/00-security-settings" database to disable the GUI autorun function:
$ sudo vi /etc/dconf/db/local.d/00-security-settings
[org/gnome/desktop/media-handling]
autorun-never=true
Update the dconf system databases:
$ sudo dconf update
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_RHEL_10_V1R1_STIG.zip
Item Details
Audit Name: DISA Red Hat Enterprise Linux 10 STIG v1r1
Category: IDENTIFICATION AND AUTHENTICATION
References: 800-53|IA-3, CAT|III, CCI|CCI-000778, CCI|CCI-001958, Rule-ID|SV-281292r1166828_rule, STIG-ID|RHEL-10-700890, Vuln-ID|V-281292
Plugin: Unix
Control ID: abf5e24b0f0000e15f0f69b70afedc1f2b5b92d7ce807488b95c63ee89840f1b