RHEL 10 must restrict privilege elevation to authorized personnel.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-281207 | RHEL-10-600520 | SV-281207r1166573_rule | CCI-002696 | medium |
| Description | ||||
| If the "sudoers" file is not configured correctly, any user defined on the system can initiate privileged actions on the target system. | ||||
| STIG | Date | |||
| Red Hat Enterprise Linux 10 Security Technical Implementation Guide | 2026-03-11 | |||
Details
Check Text (C-281207r1166573_chk)
Verify RHEL 10 restricts privilege elevation to authorized personnel with the following command:
$ sudo grep -riw ALL /etc/sudoers /etc/sudoers.d/ | grep -v "#"
If the either of the following entries is returned, this is a finding:
ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL
Fix Text (F-85673r1166572_fix)
Configure RHEL 10 to restrict privilege elevation to authorized personnel.
Remove the following entries from the "/etc/sudoers" file or configuration file under "/etc/sudoers.d/":
ALL ALL=(ALL) ALL
ALL ALL=(ALL:ALL) ALL