Check: OL6-00-000204
Oracle Linux 6 STIG:
OL6-00-000204
(in versions v2 r7 through v1 r9)
Title
The xinetd service must be uninstalled if no network services utilizing it are enabled. (Cat III impact)
Discussion
Removing the "xinetd" package decreases the risk of the xinetd service's accidental (or intentional) activation.
Check Content
If network services are using the xinetd service, this is not applicable. Run the following command to determine if the "xinetd" package is installed: # rpm -q xinetd If the package is installed, this is a finding.
Fix Text
The "xinetd" package can be uninstalled with the following command: # yum erase xinetd
Additional Identifiers
Rule ID: SV-208912r793698_rule
Vulnerability ID: V-208912
Group Title: SRG-OS-000096
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000382 |
The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services. |
Controls
Number | Title |
---|---|
CM-7 |
Least Functionality |