## should return blank
# grep -E -i "(\\\v|\\\r|\\\m|\\\s|$(grep '^ID=' /etc/os-release | cut -d= - f2 | sed -e 's/"//g'))" /etc/motd

## Remediation:
## Edit the /etc/motd file with the appropriate contents, remove any instances of \m , \r , \s , \v or references to the OS platform

## should return blank
# grep -E -i "(\\\v|\\\r|\\\m|\\\s|$(grep '^ID=' /etc/os-release | cut -d= - f2 | sed -e 's/"//g'))" /etc/issue

## Remediation:
## Edit the /etc/issue file with the appropriate contents, remove any instances of \m , \r , \s , \v or references to the OS platform

## should return blank
# grep -E -i "(\\\v|\\\r|\\\m|\\\s|$(grep '^ID=' /etc/os-release | cut -d= - f2 | sed -e 's/"//g'))" /etc/issue.net

## Remediation:
##Edit the /etc/issue.net file with the appropriate contents, remove any instances of \m , \r , \s , \v or references to the OS platform

# stat /etc/motd
Access: (0644/-rw-r--r--) Uid: ( 0/ root) Gid: ( 0/ root)

## Remediation
# chown root:root /etc/motd
# chmod u-x,go-wx /etc/motd

# stat /etc/issue
Access: (0644/-rw-r--r--) Uid: ( 0/ root) Gid: ( 0/ root)

## Remediation
# chown root:root /etc/issue
# chmod u-x,go-wx /etc/issue

# stat /etc/issue.net
Access: (0644/-rw-r--r--) Uid: ( 0/ root) Gid: ( 0/ root)

## Remediation
# chown root:root /etc/issue.net
# chmod u-x,go-wx /etc/issue.net

## check /etc/gdm3/greeter.dconf-defaults
[org/gnome/login-screen] banner-message-enable=true banner-message-text='<refer to banner text>'

## Remediation - add above details

## should be empty
# dnf check-update --security

## Remediation
# dnf update --security