V-38580: The audit system must be configured to audit the loading and unloading of dynamic kernel modules.
----------------------------------------------------------------------------------------------------------

The addition/removal of kernel modules can be used to alter the behavior of
the kernel and potentially introduce malicious code into kernel space. It is
important to have an audit trail of modules that have been introduced into the
kernel.

Details: `V-38580 in STIG Viewer`_.

.. _V-38580 in STIG Viewer: https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/2015-05-26/finding/V-38580

Notes for deployers
~~~~~~~~~~~~~~~~~~~

.. include:: developer-notes/V-38580.rst