UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The rwalld daemon must be disabled on AIX.


Overview

Finding ID Version Rule ID IA Controls Severity
V-91393 AIX7-00-003105 SV-101491r1_rule Medium
Description
The rwalld service allows remote users to broadcast system wide messages. The service runs as root and should be disabled unless absolutely necessary to prevent attacks.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2020-02-24

Details

Check Text ( C-90547r1_chk )
From the command prompt, execute the following command:
# grep "^rwalld[[:blank:]]" /etc/inetd.conf

If there is any output from the command, this is a finding.
Fix Text (F-97591r1_fix)
In "/etc/inetd.conf", comment out the "rwalld" entry by running command:
# chsubserver -r inetd -C /etc/inetd.conf -d -v 'rwalld' -p 'udp'

Restart inetd:
# refresh -s inetd