An error occurred:

Check: GEN004540

IRIX 6.5: GEN004540 (in versions v1 r1 through v1 r0.99)

Title

The SMTP service HELP command must not be enabled. (Cat II impact)

Discussion

The HELP command should be disabled to mask version information. The version of the SMTP service software could be used by attackers to target vulnerabilities present in specific software versions.

Check Content

Check if Help is disabled in Sendmail. Procedure: # grep HelpFile /etc/sendmail.cf If the contents of the file indicated by the HelpFile parameter contains any Sendmail version information, this is a finding.

Fix Text

To disable the SMTP HELP command, clear the Sendmail help file.

Additional Identifiers

Rule ID:

Vulnerability ID: V-12006

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000366

Implement the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-6

Configuration Settings