Check: GEN009340
AIX 5.3 STIG:
GEN009340
(in version v1 r3)
Title
Xserver login managers must not be running unless needed for X11 session management. (Cat II impact)
Discussion
Running Xservers and X-login managers when not needed for X11 session management increases the attack vector of the system by running unnecessary services.
Check Content
Check to see if X display login managers are running. #cat /etc/inittab | grep -e /etc/rc.dt -e xdm If any X server login managers are running, ask the SA if they are necessary for the operation of the system. If there is unnecessary X server login managers running, this is a finding.
Fix Text
Comment out or remove the X login servers from the /etc/inittab file. #vi /etc/inittab Refresh the init process. # init q
Additional Identifiers
Rule ID: SV-38722r1_rule
Vulnerability ID: V-29518
Group Title:
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001436 |
The organization disables organization-defined networking protocols within the information system deemed to be nonsecure except for explicitly identified components in support of specific operational requirements. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |