Check: GEN003815
Solaris 10 SPARC STIG:
GEN003815
(in versions v2 r4 through v1 r19)
Title
The portmap or rpcbind service must not be installed unless needed. (Cat II impact)
Discussion
The portmap and rpcbind services increase the attack surface of the system and should only be used when needed. The portmap or rpcbind services are used by a variety of services using Remote Procedure Calls (RPCs).
Check Content
If the system needs the portmap service to operate, this is not applicable. The rpcbind program is part of a core Solaris package and cannot be removed. Verify the permissions on the rpcbind file. # ls -lL /usr/sbin/rpcbind If the rpcbind service is not required and the rpcbind file has non-zero permissions, this is a finding.
Fix Text
Remove all permissions from the rpcbind file. Procedure: # chmod 0000 /usr/sbin/rpcbind
Additional Identifiers
Rule ID: SV-226916r603265_rule
Vulnerability ID: V-226916
Group Title: SRG-OS-000095
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000381 |
The organization configures the information system to provide only essential capabilities. |
Controls
Number | Title |
---|---|
CM-7 |
Least Functionality |