Check: GEN009310
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN009310
(in versions v1 r14 through v1 r10)
Title
The system must not have the rusersd service active. (Cat II impact)
Discussion
The rusersd daemon gives out a list of current uses on the system. The rusersd daemon is unnecessary and it increases the attack vector of the system by providing information on the current users of the system.
Check Content
Check the /etc/inetd.conf file for active rusersd service. #grep rusersd /etc/inetd.conf | grep -v \# If the rusersd service is enabled, this is a finding.
Fix Text
Edit the /etc/inetd.conf file and comment out the rusersd service line. Restart the inetd service. # refresh -s inetd
Additional Identifiers
Rule ID: SV-38719r1_rule
Vulnerability ID: V-29515
Group Title: GEN009310
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001436 |
The organization disables organization-defined networking protocols within the information system deemed to be nonsecure except for explicitly identified components in support of specific operational requirements. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |