UCF STIG Viewer Logo

The system must not have the systat service active.


Overview

Finding ID Version Rule ID IA Controls Severity
V-29513 GEN009290 SV-38717r1_rule ECSC-1 Medium
Description
The systat daemon allows remote users to see the running process and who is running them. This may aid in information collection for an attack and weaken the security posture of the system.
STIG Date
Draft AIX Security Technical Implementation Guide 2011-08-17

Details

Check Text ( C-37813r1_chk )
Check the /etc/inetd.conf file for active systat service.

#grep systat /etc/inetd.conf | grep -v \#

If the systat service is enabled, this is a finding.
Fix Text (F-33071r1_fix)
Edit /etc/inetd.conf and comment out systat the service line.

Restart the inetd service.

#refresh –s inetd