UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The system must not use UDP for NIS/NIS+.


Overview

Finding ID Version Rule ID IA Controls Severity
V-4399 GEN006380 SV-37739r1_rule ECSC-1 High
Description
Implementing Network Information Service (NIS) or NIS+ under UDP may make the system more susceptible to a Denial of Service attack and does not provide the same quality of service as TCP.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2014-01-09

Details

Check Text ( C-36936r1_chk )
If the system does not use NIS or NIS+, this is not applicable.

Check if NIS or NIS+ is implemented using UDP.

Procedure:
# rpcinfo -p | grep yp | grep udp

If NIS or NIS+ is implemented using UDP, this is a finding.

Fix Text (F-32201r1_fix)
Configure the system to not use UDP for NIS and NIS+. Consult vendor documentation for the required procedure.