{"description": "\nThe <code>dnf-automatic</code> timer can be enabled with the following command:\n<pre>$ sudo systemctl enable dnf-automatic.timer</pre>", "rationale": "The <tt>dnf-automatic</tt> is an alternative command line interface (CLI) to <tt>dnf upgrade</tt> with specific facilities to make it suitable to be executed automatically and regularly from systemd timers, cron jobs and similar.\nThe tool is controlled by <tt>dnf-automatic.timer</tt> SystemD timer.", "severity": "medium", "references": {"nist": ["SI-2(5)", "CM-6(a)", "SI-2(c)"], "ospp": ["FMT_SMF_EXT.1"], "srg": ["SRG-OS-000191-GPOS-00080"], "anssi": ["R61"]}, "control_references": {"anssi": ["R61"]}, "components": [], "identifiers": {}, "ocil_clause": "the dnf-automatic.timer is not enabled", "ocil": " Run the following command to determine the current status of the <code>dnf-automatic</code> timer: <pre>$ sudo systemctl is-active dnf-automatic.timer</pre> If the timer is running, it should return the following: <pre>active</pre>", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": "not bootc and not container", "platforms": ["not bootc and not container"], "sce_metadata": {"check-import": "stdout", "platform": ["multi_platform_all"], "environment": "any", "filename": "timer_dnf-automatic_enabled.sh", "relative_path": "ubuntu2204/checks/sce/timer_dnf-automatic_enabled.sh"}, "inherited_platforms": [], "cpe_platform_names": ["not_container_and_not_bootc"], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Enable dnf-automatic Timer", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/software/updating/timer_dnf-automatic_enabled/rule.yml", "template": {"name": "timer_enabled", "vars": {"timername": "dnf-automatic", "packagename": "dnf-automatic"}, "backends": {}}}