An error occurred:

Check: GEN005590

Solaris 10 X86 STIG: GEN005590 (in versions v2 r4 through v1 r17)

Title

The system must not be running any routing protocol daemons, unless the system is a router. (Cat II impact)

Discussion

Routing protocol daemons are typically used on routers to exchange network topology information with other routers. If this software is used when not required, system network information may be unnecessarily transmitted across the network.

Check Content

Check for any running routing protocol daemons. # svcs -a | grep online | egrep '(ospf|route|bgp|zebra|quagga)' OR # ps -ef | egrep '(ospf|route|bgp|zebra|quagga)' If any routing protocol daemons are listed, this is a finding.

Fix Text

Disable any routing protocol daemons. # svcadm disable <routing protocol daemon>

Additional Identifiers

Rule ID: SV-227912r603266_rule

Vulnerability ID: V-227912

Group Title: SRG-OS-000480

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000366

The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-6

Configuration Settings