Red Hat Universal Base Image 9 with select STIG hardening

Overview

Features

Release categoryGenerally Available

Privilege modeUnprivileged

Download this image

This will require authentication. View other options.

Description

The Universal Base Image with selected STIG hardening is designed and engineered to be a base layer for all of your containerized applications, middleware and utilities where hardening is desired. Applied controls are derived from the DISA approved STIG. This base image is freely redistributable, but Red Hat only supports Red Hat technologies through subscriptions for Red Hat products. This image is maintained by Red Hat and updated regularly. To properly harden containerized applications, a relevant subset of controls from the DISA STIG have been applied. This approach effectively reduces the attack surface by minimizing package footprint and preventing unnecessary access.

Documentation

Understanding the UBI standard images

Products using this container

Red Hat Universal Base Image 9

Red Hat Universal Base Images (UBI) are OCI-compliant container base operating system images with complementary runtime languages and packages that are freely redistributable.

Security

Specifications

Image specifications

The following information was extracted from the dockerfile and other sources.

Canonical image ID	Red Hat Universal Base Image 9 with select STIG hardening
Summary	Red Hat Universal Base Image (UBI) with selected STIG hardening for containerized applications.
Description	The Universal Base Image with selected STIG hardening is designed and engineered to be a base layer for all of your containerized applications, middleware and utilities where hardening is desired. Applied controls are derived from the DISA approved STIG. This base image is freely redistributable, but Red Hat only supports Red Hat technologies through subscriptions for Red Hat products. This image is maintained by Red Hat and updated regularly. To properly harden containerized applications, a relevant subset of controls from the DISA STIG have been applied. This approach effectively reduces the attack surface by minimizing package footprint and preventing unnecessary access.
Provider	Red Hat
Maintainer	Red Hat, Inc.
Repository name	ubi9/ubi-stig
Image version	9.7
Architecture	amd64

Packages

Containerfile

Get this image

Terms & conditionsThe Red Hat Universal Base Image is free to deploy on Red Hat or non-Red Hat platforms and freely redistributable. Software vendors and community projects which build on UBI may have additional EULAs which apply to their layered software. Please refer to the End User License Agreement for the Red Hat Universal Base Image for information about use of the Red Hat Universal Base Image and associated software and source code.

Registry tokens

Use a registry service account token to authenticate your container client. This allows you to pull images without using your personal Red Hat credentials, which is recommended for CI/CD pipelines and automated deployments.

Using Podman login

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

Use the following instructions to get images from a Red Hat container registry using your Red Hat login.

Using Podman login

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

Unauthenticated

Use the following instructions to get images from a Red Hat container registry without providing authentication.

Update to new container registryTo support our existing users and users to come, we will be transitioning our product portfolio and customers to a new container registry. The new registry uses standard OAuth mechanisms to provide customers with the ability to configure their systems to pull containerized content using static tokens or their Red Hat login. Customers are encouraged to begin using the new registry as their preferred authentication method.

Using podman

Use the following command(s) from a system with podman installed.

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

View a list of source packages used in a container

A source manifest is available for each Red Hat product container image and includes a list of the representative open source packages used in the image. These manifests are publicly available at:

ftp.redhat.com/pub/redhat/containers/

To view a list of the open source packages used in a specific container image, choose the namespace, repository, and tag to find the appropriate source manifest.

Example

Namespace	Repository	Tag
ubi9/	ubi-stig	9.7-1773190642.txt

Obtaining source code used in a container

A listing of every version of source packages used in published container images is publicly available at:

ftp.redhat.com/pub/redhat/containers/src.index.html

Overview

Features

Release categoryGenerally Available

Privilege modeUnprivileged

Download this image

This will require authentication. View other options.

Description

Documentation

Understanding the UBI standard images

Products using this container

Red Hat Universal Base Image 9

Red Hat Universal Base Images (UBI) are OCI-compliant container base operating system images with complementary runtime languages and packages that are freely redistributable.

Security

Specifications

Image specifications

The following information was extracted from the dockerfile and other sources.

Canonical image ID	Red Hat Universal Base Image 9 with select STIG hardening
Summary	Red Hat Universal Base Image (UBI) with selected STIG hardening for containerized applications.
Description	The Universal Base Image with selected STIG hardening is designed and engineered to be a base layer for all of your containerized applications, middleware and utilities where hardening is desired. Applied controls are derived from the DISA approved STIG. This base image is freely redistributable, but Red Hat only supports Red Hat technologies through subscriptions for Red Hat products. This image is maintained by Red Hat and updated regularly. To properly harden containerized applications, a relevant subset of controls from the DISA STIG have been applied. This approach effectively reduces the attack surface by minimizing package footprint and preventing unnecessary access.
Provider	Red Hat
Maintainer	Red Hat, Inc.
Repository name	ubi9/ubi-stig
Image version	9.7
Architecture	amd64

Packages

Containerfile

Get this image

Registry tokens

Using Podman login

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

Use the following instructions to get images from a Red Hat container registry using your Red Hat login.

Using Podman login

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

Unauthenticated

Use the following instructions to get images from a Red Hat container registry without providing authentication.

Using podman

Use the following command(s) from a system with podman installed.

Image identifiers

Manifest List Digest Recommended

Use this digest to pull the image on any supported architecture. It automatically selects the correct image for your system.

Image Digest

Unique identifier for this specific architecture's build. Use only if you need to pin exactly to this specific platform.

View a list of source packages used in a container

A source manifest is available for each Red Hat product container image and includes a list of the representative open source packages used in the image. These manifests are publicly available at:

ftp.redhat.com/pub/redhat/containers/

To view a list of the open source packages used in a specific container image, choose the namespace, repository, and tag to find the appropriate source manifest.

Example

Namespace	Repository	Tag
ubi9/	ubi-stig	9.7-1773190642.txt

Obtaining source code used in a container

A listing of every version of source packages used in published container images is publicly available at:

ftp.redhat.com/pub/redhat/containers/src.index.html

Red Hat Universal Base Image 9 with select STIG hardening

Features

Download this image

Description

Documentation

Products using this container

Red Hat Universal Base Image 9

Type

Stream

Size

Digest

Category

Image specifications

Registry tokens

Using Podman login

Image identifiers

Red Hat login

Using Podman login

Image identifiers

Unauthenticated

Using podman

Image identifiers

View a list of source packages used in a container

Obtaining source code used in a container

Platforms

Products & services

Try, buy, sell

Help

About Red Hat Ecosystem Catalog

Red Hat legal and privacy links

Red Hat legal and privacy links

Red Hat Universal Base Image 9 with select STIG hardening

Features

Download this image

Description

Documentation

Products using this container

Red Hat Universal Base Image 9

Type

Stream

Size

Digest

Category

Image specifications

Registry tokens

Using Podman login

Image identifiers

Red Hat login

Using Podman login

Image identifiers

Unauthenticated

Using podman

Image identifiers

View a list of source packages used in a container

Obtaining source code used in a container