RHEL 10 must disable the ability of systemd to spawn an interactive boot process.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-281300 | SRG-OS-000095-GPOS-00049 | RHEL-10-700980 | SV-281300r1167050_rule | 2026-03-11 | 1 |
Description
Using interactive or recovery boot, the console user could disable auditing, firewalls, or other services, weakening system security.
ℹ️ Check
Verify RHEL 10 is configured so that the current GRUB 2 configuration disables the ability of systemd to spawn an interactive boot process with the following command:
$ sudo grubby --info=ALL | grep args | grep 'systemd.confirm_spawn'
If any output is returned, this is a finding.
✔️ Fix
Configure RHEL 10 so that the current GRUB 2 configuration disables the ability of systemd to spawn an interactive boot process with the following command:
$ sudo grubby --update-kernel=ALL --remove-args="systemd.confirm_spawn"