If the system boots from removable media, it must be stored in a safe or similarly secured container.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-4255 | GEN008680 | SV-63107r1_rule | High |
| Description |
|---|
| Storing the boot loader on removable media in an insecure location could allow a malicious user to modify the systems boot instructions or boot to an insecure operating system. |
| STIG | Date |
|---|---|
| Oracle Linux 5 Security Technical Implementation Guide | 2020-02-25 |
Details
| Check Text ( C-51861r1_chk ) |
|---|
| Ask the SA if the system boots from removable media. If so, ask if the boot media is stored in a secure container when not in use. If it is not, this is a finding. |
| Fix Text (F-53693r1_fix) |
|---|
| Store the system boot media in a secure container when not in use. |