UCF STIG Viewer Logo

Inetd and xinetd must be disabled or removed if no network services utilizing them are enabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-12005 GEN003700 SV-27424r1_rule ECSC-1 Medium
Description
Unnecessary services should be disabled to decrease the attack surface of the system.
STIG Date
Red Hat Enterprise Linux 5 Security Technical Implementation Guide 2017-03-01

Details

Check Text ( C-28610r1_chk )
# ps -ef |grep xinetd
If xinetd is not running, this check is not a finding.
# grep -v "^#" /etc/xinetd.conf
# grep disable /etc/xinetd.d/* |grep no
If no active services are found, and the inetd daemon is running, this is a finding.
Fix Text (F-24696r1_fix)
# service xinetd stop ; chkconfig xinetd off