Navigate

Check: GEN003900

AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE: GEN003900 (in versions v1 r14 through v1 r10)

Title

The hosts.lpd file (or equivalent) must not contain a "+" character. (Cat II impact)

Discussion

Having the "+" character in the hosts.lpd (or equivalent) file allows all hosts to use local system print resources.

Check Content

Look for the presence of a print service configuration file. Procedure: # find /etc -name hosts.lpd -print # find /etc -name Systems -print # find /etc -name printers.conf If none of the files are found, this check should be marked not applicable. Otherwise, examine the configuration file. Procedure: # more <print service file> Check for entries containing a "+" character by itself on any line. If any are found, this is a finding.

Fix Text

Remove the "+" entries from the hosts.lpd (or equivalent) file.

Additional Identifiers

Rule ID: SV-38883r1_rule

Vulnerability ID: V-827

Group Title: GEN003900

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings