UCF STIG Viewer Logo

The rexec daemon must not be running.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4688 GEN003840 SV-38878r1_rule ECSC-1 High
Description
The rexecd process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service.
STIG Date
Draft AIX Security Technical Implementation Guide 2011-08-17

Details

Check Text ( C-37883r1_chk )
# grep -v "^#" /etc/inetd.conf |grep rexec

If any results are returned, this is a finding.
Fix Text (F-33130r1_fix)
Edit /etc/inetd.conf and comment out the line for the rexec service.
Refresh the inetd daemon.
#refresh –s inetd