Control 2.1.21 Ensure mail transfer agent is configured for local-only mode fails because of the implementation of another control #99
Description
Describe the Issue
This control always failed with the following assessment evidence:
When I ran it separately, the control passed. This fact made me think that one of the other controls, implemented by the ansible role, was causing this to fail by starting an MTA and opening port 25.
Expected Behavior
The control should've passed when the entire role was implemented!
Actual Behavior
The control only passes if it is implemented separately. The failure is caused by another control in the role.
After long hours of debugging I was able to detect the culprit control: 6.3.1 | PATCH | Ensure AIDE is installed.
Apparently when installing aide and aide-common, it automatically installs postfix as a dependency, which listens on port 25 (SMTP).
Control(s) Affected
- Control 2.1.21
Environment (please complete the following information):
- branch being used: [e.g. devel]
Possible Solution
The fix will be provided in a PR.