View the security misconfiguration catalog
  • Misconfiguration Name
  • YUM GNU Privacy Guard (GPG) key check when installing packages is not enabled
  • Description
  • The Yellowdog Updater, Modified (YUM) is a free and open-source command-line package-management utility for computers running the Linux operating system using the RPM Package Manager. YUM utilizes GNU Privacy Guard GPG key signing to verify package integrity during installation. Fixing this misconfiguration will enable¬†¬†GNU Privacy Guard (GPG) key check in YUM when installing packages.
  • Severity
  • important
  • Category
  • Linux - YUM Hardening
  • Resolution
  • Follow the below steps to resolve the misconfiguration. Open the yum configuration file /etc/yum.conf and find the [main] section, then append the following line: gpgcheck=1
  • Potential issues that may arise after applying the resolution
  • Altering the existing security setting may create the following impact in your network operations.
  • Does remediation require reboot?
  • No