RHEL 9 must not have the sendmail package installed.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-257827	RHEL-09-215020	SV-257827r1044892_rule		Medium

Description

The sendmail software was not developed with security in mind, and its design prevents it from being effectively contained by SELinux. Postfix must be used instead. Satisfies: SRG-OS-000480-GPOS-00227, SRG-OS-000095-GPOS-00049

STIG	Date
Red Hat Enterprise Linux 9 Security Technical Implementation Guide	2024-12-04

Details

Check Text (C-61568r1044891_chk)

Verify that the sendmail package is not installed with the following command:

$ dnf list --installed sendmail

Error: No matching Packages to list

If the "sendmail" package is installed, this is a finding.

Fix Text (F-61492r925467_fix)

Remove the sendmail package with the following command:

$ sudo dnf remove sendmail