An error occurred:

Check: GEN003830

HP-UX 11.31 STIG: GEN003830 (in versions v1 r19 through v1 r13)

Title

The rlogind service must not be running. (Cat II impact)

Discussion

The rlogind process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.

Check Content

Determine if the rlogind service is running. # cat /etc/inetd.conf | tr '\011' ' ' | tr -s ' ' | sed -e 's/^[ \t]*//' | grep -v "^#" | grep rlogind If rlogind is found to be enabled, this is a finding.

Fix Text

Edit /etc/inetd.conf and comment out the rlogind service. Restart the inetd service via the following command: # inetd -c

Additional Identifiers

Rule ID: SV-29697r1_rule

Vulnerability ID: V-22432

Group Title: GEN003830

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000068

The information system implements cryptographic mechanisms to protect the confidentiality of remote access sessions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-17 (2)

Protection Of Confidentiality / Integrity Using Encryption