Check: GEN003830
Solaris 10 X86 STIG:
GEN003830
(in versions v2 r4 through v1 r17)
Title
The rlogind service must not be running. (Cat II impact)
Discussion
The rlogind process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service. Satisfies: SRG-OS-000505, SRG-OS-000555, SRG-OS-000033
Check Content
Determine if the rlogind service is running. # svcs rlogin If the rlogin service is enabled, this is a finding.
Fix Text
Disable the rlogind service. # svcadm disable rlogin # svcadm refresh inetd
Additional Identifiers
Rule ID: SV-220093r603266_rule
Vulnerability ID: V-220093
Group Title: SRG-OS-000505
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000068 |
The information system implements cryptographic mechanisms to protect the confidentiality of remote access sessions. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
AC-17 (2) |
Protection Of Confidentiality / Integrity Using Encryption |