UCF STIG Viewer Logo

The Oracle Linux operating system must be configured so that all wireless network adapters are disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-221898 OL07-00-041010 SV-221898r877465_rule Medium
Description
The use of wireless networking can introduce many different attack vectors into the organization's network. Common attack vectors such as malicious association and ad hoc networks will allow an attacker to spoof a wireless access point (AP), allowing validated systems to connect to the malicious AP, and enabling the attacker to monitor and record network traffic. These malicious APs can also serve to create a man-in-the-middle attack, or be used to create a denial of service to valid network resources.
STIG Date
Oracle Linux 7 Security Technical Implementation Guide 2022-12-06

Details

Check Text ( C-23613r419766_chk )
Verify that there are no wireless interfaces configured on the system.

This is N/A for systems that do not have wireless network adapters.

Check for the presence of active wireless interfaces with the following command:

# nmcli device
DEVICE TYPE STATE
eth0 ethernet connected
wlp3s0 wifi disconnected
lo loopback unmanaged

If a wireless interface is configured and its use on the system is not documented with the Information System Security Officer (ISSO), this is a finding.
Fix Text (F-23602r419767_fix)
Configure the system to disable all wireless network interfaces with the following command:

#nmcli radio wifi off