{"description": "The DNS processing mode in NetworkManager describes how DNS is processed on the system. Depending the mode some changes the system's DNS may not be respected.", "rationale": "To ensure that DNS resolver settings are respected, a DNS mode in NetworkManager must be configured.", "severity": "medium", "references": {"nist": ["CM-6(b)"], "srg": ["SRG-OS-000480-GPOS-00227"]}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": "the dns key under main does not exist or is not set to \"none\" or \"default\"", "ocil": "Verify that Ubuntu 22.04 has a DNS mode configured in Network Manager.\n\n$ NetworkManager --print-config\n[main]\ndns=<sub idref=\"var_networkmanager_dns_mode\" />", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {"stig": {"checktext": "[main]\ndns=none\n\nIf the dns key under main does not exist or is not set to \"none\" or \"default\", this is a finding.", "fixtext": "Configure NetworkManager in Ubuntu 22.04 to use a DNS mode.\n\nIn \"/etc/NetworkManager/NetworkManager.conf\" add the following line in the \"[main]\" section:\n\ndns = none", "srg_requirement": "{{ full_name }} must configure a DNS processing mode set be Network Manager."}}, "platform": "package[NetworkManager]", "platforms": ["package[NetworkManager]"], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": ["package_networkmanager"], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "NetworkManager DNS Mode Must Be Must Configured", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/network/networkmanager/networkmanager_dns_mode/rule.yml", "template": {"name": "systemd_dropin_configuration", "vars": {"master_cfg_file": "/etc/NetworkManager/NetworkManager.conf", "dropin_dir": "/etc/NetworkManager/conf.d", "section": "main", "param": "dns", "value": "none|default", "no_quotes": "true", "application": "networkmanager", "remediation_xccdf_variable": "var_networkmanager_dns_mode"}, "backends": {}}}