Title

ESX Server required services are not documented. (Cat III impact)

Discussion

Once the ESX Server is configured and operating, all required services needed for operation will be documented. Undocumented services running on the ESX Server opens up ports and vulnerabilities that may be exploited to gain access to the server. These services also consume processor cycles and memory. The ESX Server shares resources with virtual machines and the service console, and all excess resources are allocated based on the priorities configured.

Check Content

Request the required services documentation from the IAO/SA. If no documentation can be produced, this is a finding. Compare this to the services running on the ESX Server by performing the following on the service console: #netstat –an If a discrepancy exists between the services documented, and the services running, this is a finding.

Fix Text

Document all required services for the ESX Server.

Additional Identifiers

Rule ID: SV-16766r1_rule

Vulnerability ID: V-15827

Group Title: ESX Server required services are not documented.

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.