The network element must have the Finger service disabled.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-3079 | NET0730 | SV-15306r2_rule | Low |
| Description |
|---|
| The finger service supports the UNIX finger protocol, which is used for querying a host about the users that are logged on. This service is not necessary for generic users. If an attacker were to find out who is using the network, they may use social engineering practices to try to elicit classified DoD information. |
| STIG | Date |
|---|---|
| Infrastructure Router Security Technical Implementation Guide Juniper | 2018-11-27 |
Details
| Check Text ( C-12702r2_chk ) |
|---|
| Under the edit system services hierarchy, enter a show command to verify that the finger command is not present. |
| Fix Text (F-3104r4_fix) |
|---|
| Configure the device to disable the Finger service. |