RHEL 10 must restrict privilege elevation to authorized personnel.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-281207 | SRG-OS-000445-GPOS-00199 | RHEL-10-600520 | SV-281207r1166573_rule | 2026-03-11 | 1 |
Description
If the "sudoers" file is not configured correctly, any user defined on the system can initiate privileged actions on the target system.
ℹ️ Check
Verify RHEL 10 restricts privilege elevation to authorized personnel with the following command:
$ sudo grep -riw ALL /etc/sudoers /etc/sudoers.d/ | grep -v "#"
If the either of the following entries is returned, this is a finding:
ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL
✔️ Fix
Configure RHEL 10 to restrict privilege elevation to authorized personnel.
Remove the following entries from the "/etc/sudoers" file or configuration file under "/etc/sudoers.d/":
ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL