Navigate

Check: AIX7-00-003041

IBM AIX 7.x STIG: AIX7-00-003041 (in versions v2 r9 through v1 r1)

Title

The AIX rlogind service must be disabled. (Cat I impact)

Discussion

The rlogin daemon permits username and passwords to be passed over the network in clear text.

Check Content

Determine if the "rlogind" service is running by running the following command: # grep -v "^#" /etc/inetd.conf |grep rlogin If the above grep command returned a line that contains "rlogin", this is a finding.

Fix Text

Disable the rlogind service by editing the "'etc/inetd.conf" file. # vi /etc/inetd.conf Comment out the "rlogind" service. Restart the inetd service: # refresh -s inetd

Additional Identifiers

Rule ID: SV-215347r877396_rule

Vulnerability ID: V-215347

Group Title: SRG-OS-000074-GPOS-00042

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000197	The information system, for password-based authentication, transmits only cryptographically-protected passwords.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
IA-5 (1)	Password-Based Authentication