Ubuntu 22.04
Ubuntu 22.04 LTS must not have the "ntp" package installed
STIG ID:
UBTU-22-215025
|
SRG:
SRG-OS-000480-GPOS-00227
|
Severity:
Low
|
CCI:
CCI-000366
|
Vulnerability ID:
V-260481
Description
Inaccurate time stamps make it more difficult to correlate events and can lead to an inaccurate analysis. Determining the correct time a particular event occurred on a system is critical when conducting forensic analysis and investigating system events. Sources outside the configured acceptable allowance (drift) may be inaccurate. Organizations must consider endpoints that may not have regular access to the authoritative time server (e.g., mobile, teleworking, and tactical endpoints).
Check
C-64210r953254_chk
Verify that the "ntp" package is not installed by using the following command: $ dpkg -l | grep ntp If the "ntp" package is installed, this is a finding.
Fix
F-64118r953255_fix
Uninstall the "ntp" package by using the following command: $ sudo dpkg -P --force-all ntp