UCF STIG Viewer Logo

The rlogind service must not be running.


Overview

Finding ID Version Rule ID IA Controls Severity
V-22432 GEN003830 SV-38876r1_rule DCPP-1 Medium
Description
The rlogind process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.
STIG Date
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE 2018-09-18

Details

Check Text ( C-36873r1_chk )
Determine if the rlogind service is running. If it is, this is a finding.
# grep -v "^#" /etc/inetd.conf |grep rlogin
If any results are returned, this is a finding

Fix Text (F-33129r1_fix)
Disable the rlogind service out of the '/etc/inetd.conf' file.
# vi /etc/inetd.conf
Comment out the rlogind service. Restart the inetd service.
# refresh -s inetd