Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-91337 | AIX7-00-003050 | SV-101435r1_rule | Medium |
Description |
---|
The dhcprd daemon listens for broadcast packets, receives them, and forwards them to the appropriate server. To prevent remote attacks this daemon should not be enabled unless there is no alternative. |
STIG | Date |
---|---|
IBM AIX 7.x Security Technical Implementation Guide | 2019-04-29 |
Check Text ( C-90491r1_chk ) |
---|
From the command prompt, execute the following command: # grep "^start[[:blank:]]/usr/sbin/dhcprd" /etc/rc.tcpip If there is any output from the command, this is a finding. |
Fix Text (F-97535r1_fix) |
---|
In "/etc/rc.tcpip", comment out the "dhcprd" entry by running command: # chrctcp -d dhcprd |