Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Xserver login managers must not be running unless needed for X11 session management.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-29518 | GEN009340 | SV-38722r1_rule | ECSC-1 | Medium |
| Description |
|---|
| Running Xservers and X-login managers when not needed for X11 session management increases the attack vector of the system by running unnecessary services. |
| STIG | Date |
|---|---|
| AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE | 2018-09-18 |
Details
| Check Text ( C-37818r1_chk ) |
|---|
| Check to see if X display login managers are running. #cat /etc/inittab | grep -e /etc/rc.dt -e xdm If any X server login managers are running, ask the SA if they are necessary for the operation of the system. If there is unnecessary X server login managers running, this is a finding. |
| Fix Text (F-33076r1_fix) |
|---|
| Comment out or remove the X login servers from the /etc/inittab file. #vi /etc/inittab Refresh the init process. # init q |