Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-215354 | AIX7-00-003048 | SV-215354r508663_rule | Medium |
Description |
---|
The snmpd daemon is used by many 3rd party applications to monitor the health of the system. This allows remote monitoring of network and server configuration. To prevent remote attacks this daemon should not be enabled unless there is no alternative. |
STIG | Date |
---|---|
IBM AIX 7.x Security Technical Implementation Guide | 2020-09-11 |
Check Text ( C-16552r294513_chk ) |
---|
Verify there is no "snmpd" service running on the AIX by doing the following: From the command prompt, execute the following command: # grep "^start[[:blank:]]/usr/sbin/snmpd" /etc/rc.tcpip If there is any output from the command, this is a finding. |
Fix Text (F-16550r294514_fix) |
---|
In "/etc/rc.tcpip", comment out the "snmpd" entry by running command: # chrctcp -d snmpd |