Navigate

Check: AIX7-00-003041

IBM AIX 7.x STIG: AIX7-00-003041 (in versions v3 r1 through v1 r1)

Title

The AIX rlogind service must be disabled. (Cat I impact)

Discussion

The rlogin daemon permits username and passwords to be passed over the network in clear text.

Check Content

Determine if the "rlogind" service is running by running the following command: # grep -v "^#" /etc/inetd.conf |grep rlogin If the above grep command returned a line that contains "rlogin", this is a finding.

Fix Text

Disable the rlogind service by editing the "'etc/inetd.conf" file. # vi /etc/inetd.conf Comment out the "rlogind" service. Restart the inetd service: # refresh -s inetd

Additional Identifiers

Rule ID: SV-215347r987796_rule

Vulnerability ID: V-215347

Group Title: SRG-OS-000074-GPOS-00042

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000197	For password-based authentication, transmit passwords only over cryptographically-protected channels.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
IA-5(1)	Password-based Authentication