Check: GEN009330
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN009330
(in versions v1 r14 through v1 r10)
Title
The system must not have the rstatd service active. (Cat II impact)
Discussion
The rstatd can give out information on the running system, such as the CPU usage, the system uptime, its network usage, and other system information that could potentially aid in an attack. The rstatd service is unnecessary and it weakens the defensive posture of the system. If systems monitoring is needed, use a third party tool or SNMP.
Check Content
Check the /etc/inetd.conf file for active rstatd service. #grep rstatd /etc/inetd.conf | grep -v \# If the rstatd service is enabled, this is a finding.
Fix Text
Edit the /etc/inetd.conf file and comment out the rstatd service line. Restart the inetd service. # refresh -s inetd
Additional Identifiers
Rule ID: SV-38721r1_rule
Vulnerability ID: V-29517
Group Title: GEN009330
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001436 |
The organization disables organization-defined networking protocols within the information system deemed to be nonsecure except for explicitly identified components in support of specific operational requirements. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |