Remediation Steps

Follow the steps below to remediate this finding on Linux (RHEL/CentOS/AlmaLinux).

1. Block ICMP timestamp requests using firewalld or iptables.

2. With firewalld:

   sudo firewall-cmd --permanent --add-rich-rule='rule protocol value="icmp" icmp-type name="timestamp-request" drop'
   sudo firewall-cmd --reload

3. With iptables:

   sudo iptables -A INPUT -p icmp --icmp-type timestamp-request -j DROP
   sudo service iptables save