The rlogind service must not be running.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-22432 | GEN003830 | SV-29697r1_rule | DCPP-1 | Medium |
| Description |
|---|
| The rlogind process provides a typically unencrypted, host-authenticated remote access service. SSH should be used in place of this service. |
| STIG | Date |
|---|---|
| HP-UX 11.31 Security Technical Implementation Guide | 2018-09-14 |
Details
| Check Text ( C-36538r1_chk ) |
|---|
| Determine if the rlogind service is running. # cat /etc/inetd.conf | tr '\011' ' ' | tr -s ' ' | sed -e 's/^[ \t]*//' | grep -v "^#" | grep rlogind If rlogind is found to be enabled, this is a finding. |
| Fix Text (F-31902r1_fix) |
|---|
| Edit /etc/inetd.conf and comment out the rlogind service. Restart the inetd service via the following command: # inetd -c |