Ubuntu 22.04

Ubuntu 22.04 LTS must have the "chrony" package installed

STIG ID: UBTU-22-215015 | SRG: SRG-OS-000480-GPOS-00227 | Severity: Low | CCI: CCI-000366 | Vulnerability ID: V-260479

Description

Inaccurate time stamps make it more difficult to correlate events and can lead to an inaccurate analysis. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Sources outside the configured acceptable allowance (drift) may be inaccurate. Organizations must consider endpoints that may not have regular access to the authoritative time server (e.g., mobile, teleworking, and tactical endpoints).

Check

C-64208r953248_chk

Verify the "chrony" package is installed using the following command: $ dpkg -l | grep chrony ii chrony 4.2-2ubuntu2 amd64 Versatile implementation of the Network Time Protocol If the "chrony" package is not installed, this is a finding.

Fix

F-64116r953249_fix

Install the "chrony" network time protocol package using the following command: $ sudo apt-get install chrony