diff --git a/README.md b/README.md
index b3b73498..2859d9a0 100644
--- a/README.md
+++ b/README.md
@@ -69,6 +69,7 @@ We remove the following packages:
  * ypserv ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.4)
  * telnet-server ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.2)
  * rsh-server ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.3)
+ * prelink ([open-scap](https://static.open-scap.org/ssg-guides/ssg-sl7-guide-ospp-rhel7-server.html#xccdf_org.ssgproject.content_rule_disable_prelink))
 
 ## Example Playbook
 
diff --git a/defaults/main.yml b/defaults/main.yml
index 41df4638..5d1fdec1 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -34,7 +34,7 @@ os_security_suid_sgid_remove_from_unknown: false
 
 # remove packages with known issues
 os_security_packages_clean: true
-os_security_packages_list: ['xinetd','inetd','ypserv','telnet-server','rsh-server','rsync']
+os_security_packages_list: ['xinetd','inetd','ypserv','telnet-server','rsh-server','rsync', 'prelink']
 
 # Allow interactive startup (rhel, centos)
 os_security_init_prompt: true