The system must not have an FSP service enabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-12013 | GEN005060 | SV-28415r1_rule | ECSC-1 | High |
| Description |
|---|
| FSP is a UDP-based file transfer protocol that, in the past, was commonly used for file sharing. |
| STIG | Date |
|---|---|
| Draft AIX Security Technical Implementation Guide | 2011-08-17 |
Details
| Check Text ( C-28679r1_chk ) |
|---|
| # grep -v "^#" /etc/inetd.conf |grep in.fspd If any results are returned, this is a finding. Determine if the fspd process is running. # ps -ef | grep fspd If the process is running, this is a finding. |
| Fix Text (F-25706r1_fix) |
|---|
| Edit /etc/inetd.conf and comment out or remove any lines referencing in.fspd. Kill any running fspd processes and disable any fspd startup scripts. |